Vulnerabilities > Wpfactory > Products Order Customers Export FOR Woocommerce

DATE CVE VULNERABILITY TITLE RISK
2024-10-10 CVE-2024-9377 Cross-site Scripting vulnerability in Wpfactory Products, Order & Customers Export for Woocommerce
The Products, Order & Customers Export for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.0.15.
network
low complexity
wpfactory CWE-79
6.1
6.1
2024-06-09 CVE-2024-31276 Missing Authorization vulnerability in Wpfactory Products, Order & Customers Export for Woocommerce
Missing Authorization vulnerability in WPFactory Products, Order & Customers Export for WooCommerce.This issue affects Products, Order & Customers Export for WooCommerce: from n/a through 2.0.8.
network
low complexity
wpfactory CWE-862
critical
 9.8
9.8
2023-11-14 CVE-2023-47547 Cross-site Scripting vulnerability in Wpfactory Products, Order & Customers Export for Woocommerce
Unauth.
network
low complexity
wpfactory CWE-79
6.1
6.1