Vulnerabilities > Wpswings > Wallet System FOR Woocommerce

DATE CVE VULNERABILITY TITLE RISK
2025-03-04 CVE-2024-13682 Cross-Site Request Forgery (CSRF) vulnerability in Wpswings Wallet System for Woocommerce
The Wallet System for WooCommerce – Wallet, Wallet Cashback, Refunds, Partial Payment, Wallet Restriction plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 2.6.2.
network
low complexity
wpswings CWE-352
4.3
4.3
2025-03-04 CVE-2024-13724 Improper Authorization vulnerability in Wpswings Wallet System for Woocommerce
The Wallet System for WooCommerce – Wallet, Wallet Cashback, Refunds, Partial Payment, Wallet Restriction plugin for WordPress is vulnerable to unauthorized access to functionality in all versions up to, and including, 2.6.2.
network
low complexity
wpswings CWE-285
4.3
4.3