Vulnerabilities > Woocommerce
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-10-15 | CVE-2024-9944 | Cross-site Scripting vulnerability in Woocommerce The WooCommerce plugin for WordPress is vulnerable to HTML Injection in all versions up to, and including, 9.0.2. | 6.1 |
2024-06-19 | CVE-2023-35049 | Unspecified vulnerability in Woocommerce Stripe Payment Gateway Missing Authorization vulnerability in WooCommerce WooCommerce Stripe Payment Gateway.This issue affects WooCommerce Stripe Payment Gateway: from n/a through 7.4.0. | 9.8 |
2024-06-14 | CVE-2023-51495 | Unspecified vulnerability in Woocommerce Returns and Warranty Requests Missing Authorization vulnerability in Woo WooCommerce Warranty Requests.This issue affects WooCommerce Warranty Requests: from n/a through 2.2.7. | 6.5 |
2024-06-14 | CVE-2023-51496 | Unspecified vulnerability in Woocommerce Returns and Warranty Requests Missing Authorization vulnerability in Woo WooCommerce Warranty Requests.This issue affects WooCommerce Warranty Requests: from n/a through 2.2.7. | 5.3 |
2024-06-14 | CVE-2023-51497 | Unspecified vulnerability in Woocommerce Shipping multiple Addresses Missing Authorization vulnerability in Woo WooCommerce Ship to Multiple Addresses.This issue affects WooCommerce Ship to Multiple Addresses: from n/a through 3.8.9. | 5.4 |
2024-06-12 | CVE-2024-37297 | Cross-site Scripting vulnerability in Woocommerce WooCommerce is an open-source e-commerce platform built on WordPress. | 5.4 |
2024-06-09 | CVE-2023-34003 | Unspecified vulnerability in Woocommerce BOX Office Missing Authorization vulnerability in Woo WooCommerce Box Office.This issue affects WooCommerce Box Office: from n/a through 1.1.51. | 5.3 |
2024-06-09 | CVE-2023-51494 | Missing Authorization vulnerability in Woocommerce Product Vendors Missing Authorization vulnerability in Woo WooCommerce Product Vendors.This issue affects WooCommerce Product Vendors: from n/a through 2.2.1. | 9.8 |
2024-03-27 | CVE-2023-44999 | Unspecified vulnerability in Woocommerce Stripe Payment Gateway Cross-Site Request Forgery (CSRF) vulnerability in WooCommerce WooCommerce Stripe Payment Gateway.This issue affects WooCommerce Stripe Payment Gateway: from n/a through 7.6.0. | 8.8 |
2024-03-26 | CVE-2024-24799 | Unspecified vulnerability in Woocommerce BOX Office Missing Authorization vulnerability in WooCommerce WooCommerce Box Office.This issue affects WooCommerce Box Office: from n/a through 1.2.2. | 8.8 |