Filter

Woocommerce AutomatewooWordPress WooCommerce Follow-Up Emails Plugin <= 4.9.40 is vulnerable to Arbitrary File Upload

First published (updated )

Woocommerce Product Vendors WordpressWordPress WooCommerce Product Vendors plugin <= 2.2.1 - Broken Access Control vulnerability

First published (updated )

WooCommerce Help Scout WordPressMalicious File Upload

First published (updated )

WooCommerce Upload Files WordPressMalicious File Upload, Path Traversal

First published (updated )

Woocommerce WoocommerceWordPress WooCommerce Plugin <= 8.2.2 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Woocommerce AutomatewooWordPress WooCommerce Follow-Up Emails (AutomateWoo) plugin <= 4.9.40 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

WooCommerce Gift CardsMalicious File Upload

8.8
First published (updated )

composer/woocommerce/woocommerceCSRF, XSS

8.8
First published (updated )

Woocommerce Woocommerce Order BarcodesWordPress WooCommerce Order Barcodes Plugin <= 1.6.4 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Woocommerce Shipping Multiple AddressesWordPress WooCommerce Ship to Multiple Addresses Plugin <= 3.8.5 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Woocommerce BrandsWordPress WooCommerce Brands Plugin <= 1.6.49 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Woocommerce AutomatewooWordPress AutomateWoo Plugin <= 5.7.5 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Automattic WoocommerceCode Injection

8.8
First published (updated )

CVE-2023-35917WordPress WooCommerce PayPal Payments Plugin <= 2.0.4 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Woocommerce Product AddonsWordPress WooCommerce Product Add-ons Plugin <= 6.1.3 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Woocommerce AutomatewooWordPress AutomateWoo Plugin <= 5.7.1 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Woocommerce Product RecommendationsWordPress WooCommerce Product Recommendations Plugin < 2.3.0 is vulnerable to Cross Site Request Forgery (CSRF)

8.8
First published (updated )

Woocommerce AutomatewooWordPress WooCommerce Follow-Up Emails Plugin <= 4.9.50 is vulnerable to SQL Injection

8.5
First published (updated )

Woocommerce Product AddonsWordPress WooCommerce Product Add-ons Plugin <= 6.1.3 is vulnerable to PHP Object Injection

8.2
First published (updated )

Woocommerce WoocommercePath Traversal

8.1
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Woocommerce AutomatewooWordPress AutomateWoo Plugin <= 5.7.1 is vulnerable to SQL Injection

7.6
First published (updated )

Woocommerce Nab TransactAn issue was discovered in the NAB Transact extension 2.1.0 for the WooCommerce plugin for WordPress…

7.5
First published (updated )

Woocommerce Stripe Payment GatewayUnauth. IDOR vulnerability leading to PII Disclosure in WooCommerce Stripe Payment Gateway plugin <=…

7.5
First published (updated )

Woocommerce Composite ProductsWordPress WooCommerce Composite Products Plugin <= 8.7.5 is vulnerable to Cross Site Scripting (XSS)

7.1
First published (updated )

Woocommerce Woocommerce Pre-ordersWordPress WooCommerce Pre-Orders Plugin <= 1.9.0 is vulnerable to Cross Site Scripting (XSS)

7.1
First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Woocommerce AutomatewooWordPress WooCommerce Follow-Up Emails Plugin <= 4.9.40 is vulnerable to Cross Site Scripting (XSS)

7.1
First published (updated )

Woocommerce Shipping Multiple AddressesWordPress WooCommerce Ship to Multiple Addresses Plugin <= 3.8.5 is vulnerable to Cross Site Scripting (XSS)

7.1
First published (updated )

CVE-2023-35918WordPress WooCommerce Bulk Stock Management Plugin <= 2.2.33 is vulnerable to Cross Site Scripting (XSS)

7.1
First published (updated )

Woocommerce Returns And Warranty RequestsWordPress WooCommerce Warranty Requests Plugin <= 2.1.6 is vulnerable to Cross Site Scripting (XSS)

7.1
First published (updated )

Woocommerce Woocommerce Box OfficeWordPress WooCommerce Box Office Plugin <= 1.1.50 is vulnerable to Cross Site Scripting (XSS)

First published (updated )

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203