Vulnerabilities > Zorem > Advanced Shipment Tracking FOR Woocommerce
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-07 | CVE-2021-4347 | Missing Authorization vulnerability in Zorem Advanced Shipment Tracking for Woocommerce The function update_shipment_status_email_status_fun in the plugin Advanced Shipment Tracking for WooCommerce in versions up to 3.2.6 is vulnerable to authenticated arbitrary options update. | 6.5 |
| 2023-05-25 | CVE-2022-41635 | Unspecified vulnerability in Zorem Advanced Shipment Tracking for Woocommerce Cross-Site Request Forgery (CSRF) vulnerability in Zorem Advanced Shipment Tracking for WooCommerce plugin <= 3.5.2 versions. | 8.8 |