Vulnerabilities > Cozyvision > SMS Alert Order Notifications > 3.4.8

DATE CVE VULNERABILITY TITLE RISK
2025-03-03 CVE-2025-26984 Cross-site Scripting vulnerability in Cozyvision SMS Alert Order Notifications
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Cozy Vision SMS Alert Order Notifications – WooCommerce allows Reflected XSS.
network
low complexity
cozyvision CWE-79
6.1
6.1
2025-03-03 CVE-2025-26988 SQL Injection vulnerability in Cozyvision SMS Alert Order Notifications
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozy Vision SMS Alert Order Notifications – WooCommerce allows SQL Injection.
network
low complexity
cozyvision CWE-89
7.5
7.5