Vulnerabilities > Zixn > BUY ONE Click Woocommerce > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-11-13 | CVE-2024-10853 | Missing Authorization vulnerability in Zixn BUY ONE Click Woocommerce The Buy one click WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the removeorder AJAX action in all versions up to, and including, 2.2.9. | 4.3 |
| 2024-11-13 | CVE-2024-10854 | Missing Authorization vulnerability in Zixn BUY ONE Click Woocommerce The Buy one click WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the buy_one_click_import_options AJAX action in all versions up to, and including, 2.2.9. | 4.3 |