Vulnerabilities > Cozyvision > SMS Alert Order Notifications > 3.4.2

DATE CVE VULNERABILITY TITLE RISK
2025-03-03 CVE-2025-26984 Cross-site Scripting vulnerability in Cozyvision SMS Alert Order Notifications
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Cozy Vision SMS Alert Order Notifications – WooCommerce allows Reflected XSS.
network
low complexity
cozyvision CWE-79
6.1
2025-03-03 CVE-2025-26988 SQL Injection vulnerability in Cozyvision SMS Alert Order Notifications
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozy Vision SMS Alert Order Notifications – WooCommerce allows SQL Injection.
network
low complexity
cozyvision CWE-89
7.5
2021-09-06 CVE-2021-24588 Unspecified vulnerability in Cozyvision SMS Alert Order Notifications
The SMS Alert Order Notifications WordPress plugin before 3.4.7 is affected by a cross site scripting (XSS) vulnerability in the plugin's setting page.
network
low complexity
cozyvision
6.1