Analysis
Analysis and contextual insights are available on OpenCVE Cloud.
Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).
| Vendor | Product | Default status | Versions | ||||||
|---|---|---|---|---|---|---|---|---|---|
| Josh Kohlbach | Advanced Coupons for WooCommerce Coupons | unaffected |
|
No data.
No data.
| Vendor | Product | Confidence | Versions | ||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| Josh Kohlbach | Advanced Coupons For Woocommerce Coupons | 95% |
|
||||||||||||
| Wordpress | Wordpress | 80% |
|
Found an issue or want to improve our Enrichment? You can suggest it directly by opening an issue on our dedicated GitHub repository .
No vendor fix or workaround currently provided.
Additional remediation guidance may be available on OpenCVE Cloud.
Tracking
Sign in to view the affected projects.
No advisories yet.
Fri, 10 Apr 2026 18:15:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Metrics |
cvssV3_1
|
Wed, 08 Apr 2026 19:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| First Time appeared |
Josh Kohlbach
Josh Kohlbach advanced Coupons For Woocommerce Coupons Wordpress Wordpress wordpress |
|
| Vendors & Products |
Josh Kohlbach
Josh Kohlbach advanced Coupons For Woocommerce Coupons Wordpress Wordpress wordpress |
Wed, 08 Apr 2026 08:45:00 +0000
| Type | Values Removed | Values Added |
|---|---|---|
| Description | Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Josh Kohlbach Advanced Coupons for WooCommerce Coupons advanced-coupons-for-woocommerce-free allows DOM-Based XSS.This issue affects Advanced Coupons for WooCommerce Coupons: from n/a through <= 4.7.1.1. | |
| Title | WordPress Advanced Coupons for WooCommerce Coupons plugin <= 4.7.1.1 - Cross Site Scripting (XSS) vulnerability | |
| Weaknesses | CWE-79 | |
| References |
|
MITRE
Status: PUBLISHED
Assigner: Patchstack
Published:
Updated: 2026-04-29T09:52:01.963Z
Reserved: 2026-04-07T10:47:50.137Z
Link: CVE-2026-39508
Vulnrichment
Updated: 2026-04-10T17:59:05.828Z
NVD
Status : Deferred
Published: 2026-04-08T09:16:24.937
Modified: 2026-04-24T18:08:35.440
Link: CVE-2026-39508
Redhat
No data.
OpenCVE Enrichment
Updated: 2026-04-13T14:25:30Z