CVE-2026-2232 - Vulnerability Details

- Product Table and List Builder for WooCommerce Lite <= 4.6.2 - Unauthenticated Time-Based SQL Injection via 'search' Parameter

Description

The Product Table and List Builder for WooCommerce Lite plugin for WordPress is vulnerable to time-based SQL Injection via the 'search' parameter in all versions up to, and including, 4.6.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.

Published: 2026-02-19

Score: 7.5 High

EPSS: < 1% Very Low

KEV: No

Impact:

Action:

Analysis

Impact

The Product Table and List Builder for WooCommerce Lite plugin handles the 'search' request parameter without proper escaping or parameterization. This allows attackers to inject arbitrary SQL fragments that are appended to an existing query. Once executed, the injected code can read sensitive information from the WordPress database. The flaw is a classic SQL injection weakness (CWE‑89). Because the attacker does not need authentication, any user able to issue HTTP requests to the plugin could potentially exploit it.

Affected Systems

The vulnerability affects the WordPress plugin Product Table and List Builder for WooCommerce Lite from versions up to and including 4.6.2. The official CNA lists this single product, and no specific sub‑versions are singled out beyond the upper bound.

Risk and Exploitability

The CVSS score of 7.5 indicates high severity. The EPSS score of less than 1% suggests a low probability of current exploitation, and the vulnerability is not listed in the CISA KEV catalog. The likely attack vector is unauthenticated HTTP requests directed at the plugin’s 'search' endpoint, which may be reachable from public sites. Successful exploitation requires the attacker to supply a crafted 'search' parameter that contains SQL injection payloads. The absence of authentication or input filtering permits any visitor to trigger the exploited query and obtain database data.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

wcproducttable

Product Table and List Builder for WooCommerce Lite

unaffected

Version	Status	Constraints
`0`	affected	≤ 4.6.2

No data.

Vendor Product Confidence Versions

Wcproducttable

Product Table And List Builder For Woocommerce Lite

100%

Version	Status	Scheme	Platform
`[0,4.6.2]`	affected	semver	—

Wordpress

80%

Version	Status	Scheme	Platform
`—`	unaffected	—	—

Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

Update the plugin to version 4.6.3 or later to remove the vulnerable code.
If an immediate upgrade is not possible, disable or restrict access to the plugin’s search endpoint by removing the handler or blocking the 'search' action in the WordPress admin or via a custom rule.
Add application-layer monitoring to log failed or suspicious database queries and inspect for repeated injection patterns until the patch is applied.

Generated by OpenCVE AI on April 15, 2026 at 17:00 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

No CVSS v4.0

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.0013.

Exploitation none

Automatable yes

Technical Impact partial

References

Link	Providers
https://plugins.trac.wordpress.org/browser/wc-product-table-lite/tags/4.6.2/search.php#L549
https://plugins.trac.wordpress.org/browser/wc-product-table-lite/tags/4.6.2/search.php#L574
https://plugins.trac.wordpress.org/browser/wc-product-table-lite/tags/4.6.2/search.php#L598
https://plugins.trac.wordpress.org/browser/wc-product-table-lite/trunk/search.php#L549
https://plugins.trac.wordpress.org/browser/wc-product-table-lite/trunk/search.php#L574
https://plugins.trac.wordpress.org/browser/wc-product-table-lite/trunk/search.php#L598
https://plugins.trac.wordpress.org/changeset/3457877/
https://www.wordfence.com/threat-intel/vulnerabilities/id/f2891f3d-9081-4a9f-8408-2373ce1d0306?source=cve

History

Wed, 25 Feb 2026 00:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Fri, 20 Feb 2026 10:15:00 +0000

Type	Values Removed	Values Added
First Time appeared		Wcproducttable Wcproducttable product Table And List Builder For Woocommerce Lite Wordpress Wordpress wordpress
Vendors & Products		Wcproducttable Wcproducttable product Table And List Builder For Woocommerce Lite Wordpress Wordpress wordpress

Thu, 19 Feb 2026 17:00:00 +0000

Type	Values Removed	Values Added
Description		The Product Table and List Builder for WooCommerce Lite plugin for WordPress is vulnerable to time-based SQL Injection via the 'search' parameter in all versions up to, and including, 4.6.2 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database.
Title		Product Table and List Builder for WooCommerce Lite <= 4.6.2 - Unauthenticated Time-Based SQL Injection via 'search' Parameter
Weaknesses		CWE-89
References		https://plugins.trac.wordpress.org/browser/wc-product-table-lite/tags/4.6.2/search.php#L549 https://plugins.trac.wordpress.org/browser/wc-product-table-lite/tags/4.6.2/search.php#L574 https://plugins.trac.wordpress.org/browser/wc-product-table-lite/tags/4.6.2/search.php#L598 https://plugins.trac.wordpress.org/browser/wc-product-table-lite/trunk/search.php#L549 https://plugins.trac.wordpress.org/browser/wc-product-table-lite/trunk/search.php#L574 https://plugins.trac.wordpress.org/browser/wc-product-table-lite/trunk/search.php#L598 https://plugins.trac.wordpress.org/changeset/3457877/ https://www.wordfence.com/threat-intel/vulnerabilities/id/f2891f3d-9081-4a9f-8408-2373ce1d0306?source=cve
Metrics		cvssV3_1 `{'score': 7.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N'}`

Subscriptions

Wcproducttable Product Table And List Builder For Woocommerce Lite

Wordpress Wordpress

MITRE

Status: PUBLISHED

Assigner: Wordfence

Published: 2026-02-19T16:24:56.496Z

Updated: 2026-04-08T17:32:39.089Z

Reserved: 2026-02-08T21:00:22.835Z

Link: CVE-2026-2232

Vulnrichment

Updated: 2026-02-23T18:23:00.957Z

NVD

Status : Deferred

Published: 2026-02-19T17:24:51.763

Modified: 2026-04-15T00:35:42.020

Link: CVE-2026-2232

Redhat

No data.

OpenCVE Enrichment

Updated: 2026-04-15T17:15:10Z

Weaknesses

CWE-89

Impact

Affected Systems

Risk and Exploitability

Tracking

Attack Vector Network

Attack Complexity Low

Privileges Required None

Scope Unchanged

Confidentiality Impact High

Integrity Impact None

Availability Impact None

User Interaction None

Exploitation none

Automatable yes

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object