Filters

Software

woocommerce woocommerce
11
woocommerce woocommerce pre-orders
3
woocommerce paypal checkout payment gateway
2
woocommerce returns and warranty requests
2
woocommerce shipping multiple addresses
2
woocommerce box office wordpress
1
woocommerce icons for features
1
woocommerce payu india payment gateway
1
woocommerce persian woocommerce sms
1
woocommerce persian-woocommerce
1
woocommerce sidebar manager to woosidebars converter
1
woocommerce subscriptions
1
woocommerce woocommerce box office
1
woocommerce woocommerce brands
1
woocommerce woocommerce currency switcher
1
woocommerce woocommerce order status change notifier
1
woocommerce wooframework branding
1
woocommerce wooframework tweaks
1
woocommerce woosidebars wordpress
1

Woocommerce WoocommerceWooCommerce <= 9.0.2 - Unauthenticated HTML Injection

medium
6.1
EPSS
0.05%
First published (updated )
CVE-2024-9944

Woocommerce Returns And Warranty RequestsWordPress WooCommerce Warranty Requests plugin <= 2.2.7 - Broken Access Control vulnerability

medium
6.5
First published (updated )
CVE-2023-51495

Woocommerce Returns And Warranty RequestsWordPress WooCommerce Warranty Requests plugin <= 2.2.7 - Broken Access Control vulnerability

medium
5.3
First published (updated )
CVE-2023-51496

Woocommerce Shipping Multiple AddressesWordPress WooCommerce Ship to Multiple Addresses plugin <= 3.8.9 - Broken Access Control vulnerability

medium
5.4
First published (updated )
CVE-2023-51497

composer/woocommerce/woocommerceWooCommerce has a Cross-Site Scripting Vulnerability in checkout & registration forms

medium
5.4
First published (updated )
CVE-2024-37297

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Woocommerce Box Office WordpressWordPress WooCommerce Box Office plugin <= 1.1.51 - Unauthenticated Save Ticket Barcode vulnerability

medium
6.5
First published (updated )
CVE-2023-34003

Woocommerce WoocommerceWooCommerce < 6.2.1 - Subscriber+ Arbitrary Comment Deletion

medium
4.3
First published (updated )
CVE-2022-0775

Woocommerce Shipping Multiple AddressesWordPress WooCommerce Ship to Multiple Addresses Plugin <= 3.8.3 is vulnerable to Insecure Direct Object References (IDOR)

medium
6.5
First published (updated )
CVE-2023-32799

Woocommerce Woocommerce Box OfficeWordPress WooCommerce Box Office Plugin <= 1.1.50 is vulnerable to Cross Site Scripting (XSS)

medium
6.5
First published (updated )
CVE-2023-34004

Woocommerce Woocommerce BrandsWordPress WooCommerce Brands Plugin <= 1.6.45 is vulnerable to Cross Site Scripting (XSS)

medium
6.5
First published (updated )
CVE-2023-32746

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Woocommerce Woocommerce Pre-ordersWordPress WooCommerce Pre-Orders Plugin <= 2.0.0 is vulnerable to Cross Site Scripting (XSS)

medium
6.5
First published (updated )
CVE-2023-32793

Woocommerce WoocommerceWordPress Product page shipping calculator for WooCommerce Plugin <= 1.3.25 is vulnerable to Cross Site Scripting (XSS)

medium
5.9
First published (updated )
CVE-2023-32575

Woocommerce Woocommerce Pre-ordersWooCommerce Pre-Orders < 2.0.3 - Arbitrary Pre-Order Canceling via CSRF

medium
6.5
First published (updated )
CVE-2023-3507

Woocommerce Woocommerce Pre-ordersWooCommerce Pre-Orders < 2.0.3 - Unauthorised Actions via CSRF

medium
6.5
First published (updated )
CVE-2023-3508

Woocommerce Sidebar Manager To Woosidebars ConverterWooSidebars Sidebar Manager Converter Plugin class-woosidebars-sbm-converter.php process_request redirect

medium
6.1
First published (updated )
CVE-2015-10115

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Woocommerce Woosidebars WordpressWooSidebars Plugin class-woo-sidebars.php enable_custom_post_sidebars redirect

medium
6.1
First published (updated )
CVE-2015-10114

Woocommerce Wooframework TweaksWooFramework Tweaks Plugin wooframework-tweaks.php admin_screen_logic redirect

medium
6.1
First published (updated )
CVE-2015-10113

Woocommerce Wooframework BrandingWooFramework Branding Plugin wooframework-branding.php admin_screen_logic redirect

medium
6.1
First published (updated )
CVE-2015-10112

Woocommerce Woocommerce Order Status Change NotifierWooCommerce Order Status Change Notifier <= 1.1.0 - Subscriber+ Arbitrary Order Status Update

medium
6.5
First published (updated )
CVE-2023-2179

Woocommerce Icons For FeaturesIcons for Features Plugin class-icons-for-features-admin.php redirect

medium
6.1
First published (updated )
CVE-2015-10104

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Woocommerce WoocommerceWooCommerce < 6.6.0 - Admin+ Stored HTML Injection

medium
4.8
First published (updated )
CVE-2022-2099

Woocommerce Persian-woocommercePersian Woocommerce <= 5.8.0 - Reflected Cross-Site Scripting

medium
6.1
First published (updated )
CVE-2021-24940

Woocommerce Woocommerce Currency SwitcherWooCommerce Currency Switcher < 1.3.7.1 - Reflected Cross-Site Scripting

medium
6.1
First published (updated )
CVE-2021-24938

Woocommerce WoocommerceBlind SQL Injection possible via Authenticated Web-hook Search API Endpoint

medium
4.9
First published (updated )
CVE-2021-32790

Woocommerce WoocommerceWoocommerce < 5.2.0 - Authenticated Stored Cross-Site Scripting (XSS)

medium
4.8
First published (updated )
CVE-2021-24323

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

composer/woocommerce/woocommerceThe WooCommerce plugin before 4.7.0 for WordPress allows remote attackers to view the status of arbi…

medium
5.3
First published (updated )
CVE-2020-29156

Woocommerce SubscriptionsXSS

medium
6.1
First published (updated )
CVE-2019-18834

Woocommerce Persian Woocommerce SmsXSS

medium
6.1
First published (updated )
CVE-2016-10987

Woocommerce Paypal Checkout Payment GatewayInput Validation

medium
5.3
First published (updated )
CVE-2019-14979

Woocommerce Payu India Payment GatewayInput Validation

medium
5.3
First published (updated )
CVE-2019-14978

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Woocommerce Paypal Checkout Payment Gatewaycgi-bin/webscr?cmd=_cart in the WooCommerce PayPal Checkout Payment Gateway plugin 1.6.8 for WordPre…

medium
6.5
First published (updated )
CVE-2019-7441

Woocommerce WoocommerceXSS

medium
6.1
First published (updated )
CVE-2019-9168

Woocommerce WoocommerceXSS

medium
6.1
First published (updated )
CVE-2015-2329

Woocommerce WoocommerceXSS

medium
4.8
First published (updated )
CVE-2016-10112

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203