Vulnerabilities > Tychesoftwares

DATE CVE VULNERABILITY TITLE RISK
2023-10-10 CVE-2023-41858 Unspecified vulnerability in Tychesoftwares Order Delivery Date for Woocommerce 1.0/1.1/1.2
Cross-Site Request Forgery (CSRF) vulnerability in Ashok Rane Order Delivery Date for WP e-Commerce plugin <= 1.2 versions.
network
low complexity
tychesoftwares
8.8
2023-10-02 CVE-2023-41859 Unspecified vulnerability in Tychesoftwares Order Delivery Date for WP E-Commerce 1.2
Auth.
network
low complexity
tychesoftwares
4.8
2023-09-25 CVE-2023-41874 Cross-site Scripting vulnerability in Tychesoftwares Order Delivery Date for Woocommerce
Unauth.
network
low complexity
tychesoftwares CWE-79
6.1
2023-06-22 CVE-2019-25152 Unspecified vulnerability in Tychesoftwares products
The Abandoned Cart Lite for WooCommerce and Abandoned Cart Pro for WooCommerce plugins for WordPress are vulnerable to Stored Cross-Site Scripting via multiple parameters in versions up to, and including, 5.1.3 and 7.12.0 respectively, due to insufficient input sanitization and output escaping.
network
low complexity
tychesoftwares
6.1
2023-06-07 CVE-2020-36696 Missing Authorization vulnerability in Tychesoftwares Product Input Fields for Woocommerce
The Product Input Fields for WooCommerce plugin for WordPress is vulnerable to authorization bypass due to a missing capability check on the handle_downloads() function in versions up to, and including, 1.2.6.
network
low complexity
tychesoftwares CWE-862
7.5
2023-05-25 CVE-2022-45367 Unspecified vulnerability in Tychesoftwares Custom Order Numbers for Woocommerce
Cross-Site Request Forgery (CSRF) vulnerability in Tyche Softwares Custom Order Numbers for WooCommerce plugin <= 1.4.0 versions.
network
low complexity
tychesoftwares
8.8
2023-05-16 CVE-2023-23703 Unspecified vulnerability in Tychesoftwares Arconix Shortcodes
Auth.
network
low complexity
tychesoftwares
5.4