Vulnerabilities > Woocommerce

DATE CVE VULNERABILITY TITLE RISK
2024-10-15 CVE-2024-9944 Cross-site Scripting vulnerability in Woocommerce
The WooCommerce plugin for WordPress is vulnerable to HTML Injection in all versions up to, and including, 9.0.2.
network
low complexity
woocommerce CWE-79
6.1
2024-06-19 CVE-2023-35049 Unspecified vulnerability in Woocommerce Stripe Payment Gateway
Missing Authorization vulnerability in WooCommerce WooCommerce Stripe Payment Gateway.This issue affects WooCommerce Stripe Payment Gateway: from n/a through 7.4.0.
network
low complexity
woocommerce
critical
9.8
2024-06-14 CVE-2023-51495 Unspecified vulnerability in Woocommerce Returns and Warranty Requests
Missing Authorization vulnerability in Woo WooCommerce Warranty Requests.This issue affects WooCommerce Warranty Requests: from n/a through 2.2.7.
network
low complexity
woocommerce
6.5
2024-06-14 CVE-2023-51496 Unspecified vulnerability in Woocommerce Returns and Warranty Requests
Missing Authorization vulnerability in Woo WooCommerce Warranty Requests.This issue affects WooCommerce Warranty Requests: from n/a through 2.2.7.
network
low complexity
woocommerce
5.3
2024-06-14 CVE-2023-51497 Unspecified vulnerability in Woocommerce Shipping multiple Addresses
Missing Authorization vulnerability in Woo WooCommerce Ship to Multiple Addresses.This issue affects WooCommerce Ship to Multiple Addresses: from n/a through 3.8.9.
network
low complexity
woocommerce
5.4
2024-06-12 CVE-2024-37297 Cross-site Scripting vulnerability in Woocommerce
WooCommerce is an open-source e-commerce platform built on WordPress.
network
low complexity
woocommerce CWE-79
5.4
2024-06-09 CVE-2023-34003 Unspecified vulnerability in Woocommerce BOX Office
Missing Authorization vulnerability in Woo WooCommerce Box Office.This issue affects WooCommerce Box Office: from n/a through 1.1.51.
network
low complexity
woocommerce
5.3
2024-06-09 CVE-2023-51494 Missing Authorization vulnerability in Woocommerce Product Vendors
Missing Authorization vulnerability in Woo WooCommerce Product Vendors.This issue affects WooCommerce Product Vendors: from n/a through 2.2.1.
network
low complexity
woocommerce CWE-862
critical
9.8
2024-03-27 CVE-2023-44999 Unspecified vulnerability in Woocommerce Stripe Payment Gateway
Cross-Site Request Forgery (CSRF) vulnerability in WooCommerce WooCommerce Stripe Payment Gateway.This issue affects WooCommerce Stripe Payment Gateway: from n/a through 7.6.0.
network
low complexity
woocommerce
8.8
2024-03-26 CVE-2024-24799 Unspecified vulnerability in Woocommerce BOX Office
Missing Authorization vulnerability in WooCommerce WooCommerce Box Office.This issue affects WooCommerce Box Office: from n/a through 1.2.2.
network
low complexity
woocommerce
8.8