Filter

Woocommerce WoocommerceWooCommerce <= 9.0.2 - Unauthenticated HTML Injection

EPSS
0.05%
First published (updated )

Woocommerce Returns And Warranty RequestsWordPress WooCommerce Warranty Requests plugin <= 2.2.7 - Broken Access Control vulnerability

First published (updated )

Woocommerce Returns And Warranty RequestsWordPress WooCommerce Warranty Requests plugin <= 2.2.7 - Broken Access Control vulnerability

First published (updated )

Woocommerce Shipping Multiple AddressesWordPress WooCommerce Ship to Multiple Addresses plugin <= 3.8.9 - Broken Access Control vulnerability

First published (updated )

composer/woocommerce/woocommerceWooCommerce has a Cross-Site Scripting Vulnerability in checkout & registration forms

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Woocommerce Box Office WordpressWordPress WooCommerce Box Office plugin <= 1.1.51 - Unauthenticated Save Ticket Barcode vulnerability

First published (updated )

Woocommerce Product Vendors WordpressWordPress WooCommerce Product Vendors plugin <= 2.2.1 - Broken Access Control vulnerability

First published (updated )

Woocommerce WoocommerceWooCommerce < 6.2.1 - Subscriber+ Arbitrary Comment Deletion

First published (updated )

Woocommerce WoocommerceWordPress WooCommerce Plugin <= 8.2.2 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Woocommerce Product AddonsWordPress WooCommerce Product Add-ons Plugin <= 6.1.3 is vulnerable to PHP Object Injection

8.2
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Woocommerce Shipping Multiple AddressesWordPress WooCommerce Ship to Multiple Addresses Plugin <= 3.8.3 is vulnerable to Insecure Direct Object References (IDOR)

First published (updated )

Woocommerce AutomatewooWordPress WooCommerce Follow-Up Emails Plugin <= 4.9.40 is vulnerable to Arbitrary File Upload

First published (updated )

Woocommerce AutomatewooWordPress AutomateWoo Plugin <= 5.7.1 is vulnerable to SQL Injection

7.6
First published (updated )

Woocommerce AutomatewooWordPress WooCommerce Follow-Up Emails Plugin <= 4.9.50 is vulnerable to SQL Injection

8.5
First published (updated )

Woocommerce Product RecommendationsWordPress WooCommerce Product Recommendations Plugin < 2.3.0 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Woocommerce AutomatewooWordPress AutomateWoo Plugin <= 5.7.1 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Woocommerce Product AddonsWordPress WooCommerce Product Add-ons Plugin <= 6.1.3 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Woocommerce Woocommerce Box OfficeWordPress WooCommerce Box Office Plugin <= 1.1.50 is vulnerable to Cross Site Scripting (XSS)

First published (updated )

Woocommerce Returns And Warranty RequestsWordPress WooCommerce Warranty Requests Plugin <= 2.1.6 is vulnerable to Cross Site Scripting (XSS)

7.1
First published (updated )

Woocommerce Woocommerce BrandsWordPress WooCommerce Brands Plugin <= 1.6.45 is vulnerable to Cross Site Scripting (XSS)

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Woocommerce Woocommerce Pre-ordersWordPress WooCommerce Pre-Orders Plugin <= 2.0.0 is vulnerable to Cross Site Scripting (XSS)

First published (updated )

Woocommerce Woocommerce Pre-ordersWordPress WooCommerce Pre-Orders Plugin <= 1.9.0 is vulnerable to Cross Site Scripting (XSS)

7.1
First published (updated )

Woocommerce Composite ProductsWordPress WooCommerce Composite Products Plugin <= 8.7.5 is vulnerable to Cross Site Scripting (XSS)

7.1
First published (updated )

Woocommerce WoocommerceWordPress Product page shipping calculator for WooCommerce Plugin <= 1.3.25 is vulnerable to Cross Site Scripting (XSS)

First published (updated )

Woocommerce Shipping Multiple AddressesWordPress WooCommerce Ship to Multiple Addresses Plugin <= 3.8.5 is vulnerable to Cross Site Scripting (XSS)

7.1
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Woocommerce Woocommerce Pre-ordersWooCommerce Pre-Orders < 2.0.3 - Arbitrary Pre-Order Canceling via CSRF

First published (updated )

Woocommerce Woocommerce Pre-ordersWooCommerce Pre-Orders < 2.0.3 - Unauthorised Actions via CSRF

First published (updated )

Woocommerce Shipping Multiple AddressesWordPress WooCommerce Ship to Multiple Addresses Plugin <= 3.8.5 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Woocommerce AutomatewooWordPress AutomateWoo Plugin <= 5.7.5 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Woocommerce Woocommerce Order BarcodesWordPress WooCommerce Order Barcodes Plugin <= 1.6.4 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203