Filters

Software

woocommerce automatewoo
6
woocommerce woocommerce
4
woocommerce product addons
2
woocommerce shipping multiple addresses
2
woocommerce brands
1
woocommerce composite products
1
woocommerce gift cards
1
woocommerce nab transact
1
woocommerce product recommendations
1
woocommerce returns and warranty requests
1
woocommerce stripe payment gateway
1
woocommerce woocommerce order barcodes
1
woocommerce woocommerce pre-orders
1

Woocommerce WoocommerceWordPress WooCommerce Plugin <= 8.2.2 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-52222

Woocommerce Product AddonsWordPress WooCommerce Product Add-ons Plugin <= 6.1.3 is vulnerable to PHP Object Injection

high
8.2
First published (updated )
CVE-2023-32795

Woocommerce AutomatewooWordPress AutomateWoo Plugin <= 5.7.1 is vulnerable to SQL Injection

high
7.6
First published (updated )
CVE-2023-32743

Woocommerce AutomatewooWordPress WooCommerce Follow-Up Emails Plugin <= 4.9.50 is vulnerable to SQL Injection

high
8.5
First published (updated )
CVE-2023-33330

Woocommerce Product RecommendationsWordPress WooCommerce Product Recommendations Plugin < 2.3.0 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-32744

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Woocommerce AutomatewooWordPress AutomateWoo Plugin <= 5.7.1 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-32745

Woocommerce Product AddonsWordPress WooCommerce Product Add-ons Plugin <= 6.1.3 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-32794

Woocommerce Returns And Warranty RequestsWordPress WooCommerce Warranty Requests Plugin <= 2.1.6 is vulnerable to Cross Site Scripting (XSS)

high
7.1
First published (updated )
CVE-2023-33317

Woocommerce Woocommerce Pre-ordersWordPress WooCommerce Pre-Orders Plugin <= 1.9.0 is vulnerable to Cross Site Scripting (XSS)

high
7.1
First published (updated )
CVE-2023-32802

Woocommerce Composite ProductsWordPress WooCommerce Composite Products Plugin <= 8.7.5 is vulnerable to Cross Site Scripting (XSS)

high
7.1
First published (updated )
CVE-2023-32801

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Woocommerce Shipping Multiple AddressesWordPress WooCommerce Ship to Multiple Addresses Plugin <= 3.8.5 is vulnerable to Cross Site Scripting (XSS)

high
7.1
First published (updated )
CVE-2023-37873

Woocommerce Shipping Multiple AddressesWordPress WooCommerce Ship to Multiple Addresses Plugin <= 3.8.5 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-36514

Woocommerce AutomatewooWordPress AutomateWoo Plugin <= 5.7.5 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-36513

Woocommerce Woocommerce Order BarcodesWordPress WooCommerce Order Barcodes Plugin <= 1.6.4 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-36511

Woocommerce BrandsWordPress WooCommerce Brands Plugin <= 1.6.49 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-35880

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

CVE-2023-35917WordPress WooCommerce PayPal Payments Plugin <= 2.0.4 is vulnerable to Cross Site Request Forgery (CSRF)

high
8.8
First published (updated )
CVE-2023-35917

CVE-2023-35918WordPress WooCommerce Bulk Stock Management Plugin <= 2.2.33 is vulnerable to Cross Site Scripting (XSS)

high
7.1
First published (updated )
CVE-2023-35918

Woocommerce Stripe Payment GatewayUnauth. IDOR vulnerability leading to PII Disclosure in WooCommerce Stripe Payment Gateway plugin <=…

high
7.5
First published (updated )
CVE-2023-34000

Woocommerce AutomatewooCSRF

high
8.8
First published (updated )
CVE-2023-33316

Woocommerce AutomatewooWordPress WooCommerce Follow-Up Emails Plugin <= 4.9.40 is vulnerable to Cross Site Scripting (XSS)

high
7.1
First published (updated )
CVE-2023-33319

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

WooCommerce Gift CardsMalicious File Upload

high
8.8
First published (updated )
CVE-2020-35627

Woocommerce Nab TransactAn issue was discovered in the NAB Transact extension 2.1.0 for the WooCommerce plugin for WordPress…

high
7.5
First published (updated )
CVE-2020-11497

composer/woocommerce/woocommerceCSRF, XSS

high
8.8
First published (updated )
CVE-2019-20891

Automattic WoocommerceCode Injection

high
8.8
First published (updated )
CVE-2017-18356

Woocommerce WoocommercePath Traversal

high
8.1
First published (updated )
CVE-2018-20714

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203