WooCommerce vulnerability
WooCommerce Vulnerability – Reflected Cross-Site Scripting via Order Attribution – CVE-2024-37297 | WordPress Plugin Vulnerability Report
Plugin Name: WooCommerce Key Information: Software Type: Plugin Software Slug: woocommerce Software Status: Active Software Author: woothemes Software Downloads: 317,169,418 Active Installs: 7,000,000 Last Updated: June 20, 2024 Patched Versions: 8.8.5, 8.9.3 Affected Versions: 8.8.0 – 8.8.4, 8.9.0 – 8.9.2 Vulnerability Details: Name: WooCommerce 8.8.0 – 8.9.2 Title: Reflected Cross-Site Scripting via Order Attribution Type:…
Read MorePrint Invoice & Delivery Notes for WooCommerce Vulnerability – Missing Authorization to Notice Dismissal – CVE-2024-4233 | WordPress Plugin Vulnerability Report
Plugin Name: Print Invoice & Delivery Notes for WooCommerce Key Information: Software Type: Plugin Software Slug: woocommerce-delivery-notes Software Status: Active Software Author: tychesoftwares Software Downloads: 999,558 Active Installs: 40,000 Last Updated: May 10, 2024 Patched Versions: 4.9.0 Affected Versions: <= 4.8.1 Vulnerability Details: Name: Multiple Plugins by tychesoftwares <= 4.8.1 Title: Missing Authorization to Notice…
Read MoreWooCommerce PDF Invoices, Packing Slips, Delivery Notes, and Shipping Labels – Unauthenticated Stored Cross-Site Scripting – CVE-2024-0957| WordPress Plugin Vulnerability Report
Plugin Name: WooCommerce PDF Invoices, Packing Slips, Delivery Notes, and Shipping Labels Key Information: Software Type: Plugin Software Slug: print-invoices-packing-slip-labels-for-woocommerce Software Status: Active Software Author: webtoffee Software Downloads: 1,355,245 Active Installs: 50,000 Last Updated: March 21, 2024 Patched Versions: 4.4.2 Affected Versions: <= 4.4.1 Vulnerability Details: Name: WooCommerce PDF Invoices, Packing Slips, Delivery Notes and…
Read MoreBooster for WooCommerce Vulnerability- Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode – CVE-2024-1534 | WordPress Plugin Vulnerability Report
Plugin Name: Booster for WooCommerce Key Information: Software Type: Plugin Software Slug: woocommerce-jetpack Software Status: Active Software Author: pluggabl Software Downloads: 3,585,523 Active Installs: 50,000 Last Updated: March 8, 2024 Patched Versions: 7.1.8 Affected Versions: <= 7.1.7 Vulnerability Details: Name: Booster for WooCommerce <= 7.1.7 Title: Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode Type: CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N…
Read MoreWooCommerce Vulnerability – Reflected Cross-Site Scripting | WordPress Plugin Vulnerability Report
Plugin Name: WooCommerce Key Information: Software Type: Plugin Software Slug: woocommerce Software Status: Active Software Author: woothemes Software Downloads: 289,194,192 Active Installs: 5,000,000 Last Updated: January 12, 2024 Patched Versions: 8.4.0 Affected Versions: < 8.4.0 Vulnerability Details: Name: WooCommerce < 8.4.0 Title: Reflected Cross-Site Scripting Type: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N CVE: NA CVSS Score: 6.1 Publicly Published: January…
Read MoreWordPress Plugin Vulnerability Report – Abandoned Cart Lite for WooCommerce – Cross-Site Request Forgery
Plugin Name: Abandoned Cart Lite for WooCommerce Key Information: Software Type: Plugin Software Slug: woocommerce-abandoned-cart Software Status: Active Software Author: tychesoftwares Software Downloads: 1,004,642 Active Installs: 30,000 Last Updated: December 1, 2023 Patched Versions: 5.16.2 Affected Versions: <= 5.16.1 Vulnerability Details: Name: Abandoned Cart Lite for WooCommerce <= 5.16.1 – Cross-Site Request Forgery Title: Cross-Site Request Forgery Type: Cross-Site Request Forgery (CSRF) CVSS Score: 5.3 (Medium) Publicly Published: December…
Read More