Filter
AND

Woocommerce WoocommerceWooCommerce <= 9.0.2 - Unauthenticated HTML Injection

EPSS
0.05%
First published (updated )

Woocommerce Returns And Warranty RequestsWordPress WooCommerce Warranty Requests plugin <= 2.2.7 - Broken Access Control vulnerability

First published (updated )

Woocommerce Returns And Warranty RequestsWordPress WooCommerce Warranty Requests plugin <= 2.2.7 - Broken Access Control vulnerability

First published (updated )

Woocommerce Shipping Multiple AddressesWordPress WooCommerce Ship to Multiple Addresses plugin <= 3.8.9 - Broken Access Control vulnerability

First published (updated )

composer/woocommerce/woocommerceWooCommerce has a Cross-Site Scripting Vulnerability in checkout & registration forms

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Woocommerce Box Office WordpressWordPress WooCommerce Box Office plugin <= 1.1.51 - Unauthenticated Save Ticket Barcode vulnerability

First published (updated )

Woocommerce WoocommerceWooCommerce < 6.2.1 - Subscriber+ Arbitrary Comment Deletion

First published (updated )

Woocommerce Shipping Multiple AddressesWordPress WooCommerce Ship to Multiple Addresses Plugin <= 3.8.3 is vulnerable to Insecure Direct Object References (IDOR)

First published (updated )

Woocommerce Woocommerce Box OfficeWordPress WooCommerce Box Office Plugin <= 1.1.50 is vulnerable to Cross Site Scripting (XSS)

First published (updated )

Woocommerce Woocommerce BrandsWordPress WooCommerce Brands Plugin <= 1.6.45 is vulnerable to Cross Site Scripting (XSS)

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Woocommerce Woocommerce Pre-ordersWordPress WooCommerce Pre-Orders Plugin <= 2.0.0 is vulnerable to Cross Site Scripting (XSS)

First published (updated )

Woocommerce WoocommerceWordPress Product page shipping calculator for WooCommerce Plugin <= 1.3.25 is vulnerable to Cross Site Scripting (XSS)

First published (updated )

Woocommerce Woocommerce Pre-ordersWooCommerce Pre-Orders < 2.0.3 - Arbitrary Pre-Order Canceling via CSRF

First published (updated )

Woocommerce Woocommerce Pre-ordersWooCommerce Pre-Orders < 2.0.3 - Unauthorised Actions via CSRF

First published (updated )

Woocommerce Sidebar Manager To Woosidebars ConverterWooSidebars Sidebar Manager Converter Plugin class-woosidebars-sbm-converter.php process_request redirect

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Woocommerce Woosidebars WordpressWooSidebars Plugin class-woo-sidebars.php enable_custom_post_sidebars redirect

First published (updated )

Woocommerce Wooframework TweaksWooFramework Tweaks Plugin wooframework-tweaks.php admin_screen_logic redirect

First published (updated )

Woocommerce Wooframework BrandingWooFramework Branding Plugin wooframework-branding.php admin_screen_logic redirect

First published (updated )

Woocommerce Woocommerce Order Status Change NotifierWooCommerce Order Status Change Notifier <= 1.1.0 - Subscriber+ Arbitrary Order Status Update

First published (updated )

Woocommerce Icons For FeaturesIcons for Features Plugin class-icons-for-features-admin.php redirect

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Woocommerce WoocommerceWooCommerce < 6.6.0 - Admin+ Stored HTML Injection

First published (updated )

Woocommerce Persian-woocommercePersian Woocommerce <= 5.8.0 - Reflected Cross-Site Scripting

First published (updated )

Woocommerce Woocommerce Currency SwitcherWooCommerce Currency Switcher < 1.3.7.1 - Reflected Cross-Site Scripting

First published (updated )

Woocommerce WoocommerceBlind SQL Injection possible via Authenticated Web-hook Search API Endpoint

First published (updated )

Woocommerce WoocommerceWoocommerce < 5.2.0 - Authenticated Stored Cross-Site Scripting (XSS)

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

composer/woocommerce/woocommerceThe WooCommerce plugin before 4.7.0 for WordPress allows remote attackers to view the status of arbi…

First published (updated )

Woocommerce SubscriptionsXSS

First published (updated )

Woocommerce Persian Woocommerce SmsXSS

First published (updated )

Woocommerce Paypal Checkout Payment GatewayInput Validation

First published (updated )

Woocommerce Payu India Payment GatewayInput Validation

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203