Vulnerabilities > WOO

DATE CVE VULNERABILITY TITLE RISK
2023-12-18 CVE-2023-33331 SQL Injection vulnerability in WOO Product Vendors
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WooCommerce Product Vendors allows SQL Injection.This issue affects Product Vendors: from n/a through 2.1.76.
network
low complexity
woo CWE-89
7.2
7.2
2023-10-31 CVE-2023-35879 SQL Injection vulnerability in WOO Product Vendors
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WooCommerce Product Vendors allows SQL Injection.This issue affects Product Vendors: from n/a through 2.1.78.
network
low complexity
woo CWE-89
critical
 9.8
9.8