Vulnerabilities > Villatheme > Woocommerce Thank YOU Page Customizer

DATE CVE VULNERABILITY TITLE RISK
2024-02-27 CVE-2024-1686 Missing Authorization vulnerability in Villatheme Woocommerce Thank YOU Page Customizer
The Thank You Page Customizer for WooCommerce – Increase Your Sales plugin for WordPress is vulnerable to missing authorization e in all versions up to, and including, 1.1.2 via the apply_layout function due to a missing capability check.
network
low complexity
villatheme CWE-862
6.5
6.5
2023-05-25 CVE-2022-46810 Cross-Site Request Forgery (CSRF) vulnerability in Villatheme Woocommerce Thank YOU Page Customizer 1.0.13
Cross-Site Request Forgery (CSRF) vulnerability in VillaTheme Thank You Page Customizer for WooCommerce – Increase Your Sales plugin <= 1.0.13 versions.
network
low complexity
villatheme CWE-352
8.8
8.8
2023-05-25 CVE-2022-46812 Cross-Site Request Forgery (CSRF) vulnerability in Villatheme Woocommerce Thank YOU Page Customizer 1.0.13
Cross-Site Request Forgery (CSRF) vulnerability in VillaTheme Thank You Page Customizer for WooCommerce – Increase Your Sales plugin <= 1.0.13 versions.
network
low complexity
villatheme CWE-352
8.8
8.8