Vulnerability Name |
CVE
CWE
|
CWE |
Severity |
WordPress Plugin WooCommerce Dynamic Pricing & Discounts Multiple Vulnerabilities (2.4.1)
|
CWE-264
|
CWE-264
|
High
|
WordPress Plugin WooCommerce Email Test Information Disclosure (1.5)
|
CWE-200
|
CWE-200
|
High
|
WordPress Plugin WooCommerce Enhanced Ecommerce Analytics Integration with Conversion Tracking Multiple Vulnerabilities (1.8)
|
CWE-79
CWE-352
|
CWE-79
CWE-352
|
High
|
WordPress Plugin WooCommerce EnvioPack Cross-Site Scripting (1.2)
|
CVE-2021-39314
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce Export Orders and More Cross-Site Scripting (2.0.10)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce Extra Product Options Multiple Vulnerabilities (4.5.3)
|
CWE-79
CWE-94
|
CWE-79
CWE-94
|
High
|
WordPress Plugin WooCommerce Help Scout Arbitrary File Upload (2.9)
|
CVE-2021-24212
CWE-434
|
CWE-434
|
High
|
WordPress Plugin WooCommerce HTML Injection (6.5.1)
|
CVE-2022-2099
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce Information Disclosure (4.5.2)
|
CVE-2020-29156
CWE-200
|
CWE-200
|
High
|
WordPress Plugin WooCommerce Instamojo Cross-Site Scripting (0.0.6)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce Multi Currency-Currency Switcher Security Bypass (2.1.17)
|
CWE-264
|
CWE-264
|
High
|
WordPress Plugin WooCommerce Multilingual-run WooCommerce with WPML Multiple Unspecified Vulnerabilities (3.5.4)
|
|
|
High
|
WordPress Plugin WooCommerce Multiple Vulnerabilities (2.3.5)
|
CVE-2015-2329
CWE-79
CWE-89
|
CWE-79
CWE-89
|
High
|
WordPress Plugin WooCommerce Multiple Vulnerabilities (6.2.0)
|
CVE-2022-0775
CWE-22
CWE-863
|
CWE-22
CWE-863
|
High
|
WordPress Plugin WooCommerce Object Injection (2.3.10)
|
CWE-915
|
CWE-915
|
High
|
WordPress Plugin WooCommerce OpenPOS Arbitrary File Deletion (6.4.4)
|
CVE-2024-37932
CWE-73
|
CWE-73
|
High
|
WordPress Plugin WooCommerce OpenPOS SQL Injection (6.4.4)
|
CVE-2024-37933
CWE-89
|
CWE-89
|
High
|
WordPress Plugin WooCommerce Open Redirect (3.7.0)
|
CWE-601
|
CWE-601
|
High
|
WordPress Plugin Woocommerce Payment Gateway per Category Cross-Site Scripting (2.0.10)
|
CVE-2021-38341
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce Payments-Fully Integrated Solution Built and Supported by Woo Security Bypass (5.6.1)
|
CVE-2023-28121
CWE-269
|
CWE-269
|
High
|
WordPress Plugin WooCommerce PayPal Checkout Payment Gateway Parameter Tampering (1.6.8)
|
CVE-2019-7441
CWE-472
|
CWE-472
|
High
|
WordPress Plugin WooCommerce PayPlug Unspecified Vulnerability (3.1.0)
|
|
|
High
|
WordPress Plugin WooCommerce PayU India (PayUmoney-PayUbiz) Parameter Tampering (2.1.1)
|
CVE-2019-14978
CWE-472
|
CWE-472
|
High
|
WordPress Plugin WooCommerce PDF Invoice Bulk Download Cross-Site Scripting (1.0.0)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce PDF Invoices & Packing Slips Cross-Site Request Forgery (2.2.6)
|
CWE-352
|
CWE-352
|
High
|
WordPress Plugin WooCommerce PDF Invoices & Packing Slips Cross-Site Scripting (2.0.12)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce PDF Vouchers-Ultimate Gift Cards Security Bypass (4.9.3)
|
CVE-2024-7027
CWE-863
|
CWE-863
|
High
|
WordPress Plugin WooCommerce PDF Vouchers-Ultimate Gift Cards Unspecified Vulnerability (4.9.4)
|
|
|
High
|
WordPress Plugin WooCommerce PHP Object Injection (3.1.0)
|
CWE-915
|
CWE-915
|
High
|
WordPress Plugin WooCommerce PHP Object Injection (3.2.3)
|
CVE-2017-18356
CWE-915
|
CWE-915
|
High
|
WordPress Plugin WooCommerce Possible Remote Code Execution (3.4.5)
|
CWE-94
|
CWE-94
|
High
|
WordPress Plugin WooCommerce Possible Remote Code Execution (3.5.0)
|
CWE-94
|
CWE-94
|
High
|
WordPress Plugin WooCommerce Potential PHP Object Injection (3.4.4)
|
CWE-915
|
CWE-915
|
High
|
WordPress Plugin WooCommerce Predictive Search Cross-Site Scripting (1.0.5)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce Privilege Escalation (3.5.0)
|
CWE-264
|
CWE-264
|
High
|
WordPress Plugin WooCommerce Product Attachment Cross-Site Scripting (1.1.2)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin Woocommerce Product Designer Arbitrary File Upload (3.0.3)
|
CWE-434
|
CWE-434
|
High
|
WordPress Plugin WooCommerce Product Feed for Google, Facebook, eBay and Many More Cross-Site Request Forgery (1.5.24)
|
CWE-352
|
CWE-352
|
High
|
WordPress Plugin WooCommerce Product Feed for Google, Facebook, eBay and Many More Cross-Site Request Forgery (1.5.26)
|
CWE-352
|
CWE-352
|
High
|
WordPress Plugin WooCommerce Product Feed for Google, Facebook, eBay and Many More Cross-Site Scripting (3.1.14)
|
CVE-2019-1010124
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce Product Feed for Google, Facebook, eBay and Many More Security Bypass (2.2.26)
|
CWE-264
|
CWE-264
|
High
|
WordPress Plugin WooCommerce Product Feed Manager Security Bypass (2.2.3)
|
CWE-264
|
CWE-264
|
High
|
WordPress Plugin Woocommerce Products Price Bulk Edit Cross-Site Scripting (2.2.0)
|
CVE-2019-14796
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce Product Table Lite Cross-Site Scripting (2.3.0)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce Product Vendors Cross-Site Scripting (2.0.35)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce Quick Reports Cross-Site Scripting (1.0.6)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce Remote Code Execution (4.0.1)
|
CWE-94
|
CWE-94
|
High
|
WordPress Plugin WooCommerce SagePay Direct Payment Gateway Multiple Cross-Site Scripting Vulnerabilities (0.1.6.6)
|
CVE-2014-4549
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce Salesforce Integration Cross-Site Scripting (1.5.8)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce Save For Later Cart Enhancement PHP Object Injection (1.0.6)
|
CWE-915
|
CWE-915
|
High
|
WordPress Plugin WooCommerce Security Bypass (2.1.7)
|
CWE-264
|
CWE-264
|
High
|
WordPress Plugin WooCommerce Security Bypass (4.6.1)
|
CWE-264
|
CWE-264
|
High
|
WordPress Plugin WooCommerce Security Bypass (5.6.0)
|
CWE-284
|
CWE-284
|
High
|
WordPress Plugin WooCommerce Security Bypass (6.3.0)
|
CWE-863
|
CWE-863
|
High
|
WordPress Plugin WooCommerce Smart Coupons Security Bypass (4.6.0)
|
CWE-264
|
CWE-264
|
High
|
WordPress Plugin WooCommerce Social Login PHP Object Injection (2.6.2)
|
CVE-2024-5871
CWE-915
|
CWE-915
|
High
|
WordPress Plugin WooCommerce Social Login PHP Object Injection (2.6.3)
|
CVE-2024-37502
CWE-915
|
CWE-915
|
High
|
WordPress Plugin WooCommerce Social Login Privilege Escalation (2.7.3)
|
CVE-2024-6636
CWE-862
|
CWE-862
|
High
|
WordPress Plugin WooCommerce SQL Injection (5.5.0)
|
CVE-2021-32790
CWE-89
|
CWE-89
|
High
|
WordPress Plugin WooCommerce Stock Manager Cross-Site Request Forgery (2.5.7)
|
CVE-2021-34619
CWE-352
|
CWE-352
|
High
|
WordPress Plugin WooCommerce Stock Manager Security Bypass (1.0.7)
|
CWE-264
|
CWE-264
|
High
|
WordPress Plugin WooCommerce Subscriptions Cross-Site Scripting (2.6.2)
|
CVE-2019-18834
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WooCommerce Unspecified Vulnerability (3.5.3)
|
|
|
High
|
WordPress Plugin WooCommerce Unspecified Vulnerability (3.9.1)
|
|
|
High
|
WordPress Plugin WooCommerce Unspecified Vulnerability (4.2.0)
|
|
|
High
|
WordPress Plugin WooCommerce Upload Files Arbitrary File Upload (59.3)
|
CVE-2021-24171
CWE-434
|
CWE-434
|
High
|
WordPress Plugin WooCommerce Upload My File Cross-Site Request Forgery (0.3.9)
|
CWE-352
|
CWE-352
|
High
|
WordPress Plugin Woocommerce User Email Verification Security Bypass (3.3.0)
|
CWE-264
|
CWE-264
|
High
|
WordPress Plugin WooCommerce Weight Based Shipping Cross-Site Request Forgery (5.4.1)
|
CVE-2022-46794
CWE-352
|
CWE-352
|
High
|
WordPress Plugin WooCommerce Zoho Integration-CRM, Books, Invoice, Inventory Cross-Site Scripting (1.2.3)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Cross-Site Scripting (1.1.5.1)
|
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Cross-Site Scripting (1.3.7)
|
CVE-2021-24938
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Cross-Site Scripting (1.3.7.2)
|
CVE-2021-25043
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Cross-Site Scripting (1.3.7.4)
|
CVE-2022-0234
CWE-79
|
CWE-79
|
High
|
WordPress Plugin WOOCS-Currency Switcher for WooCommerce Professional Local File Inclusion (1.3.6.2)
|
CVE-2021-24566
CWE-98
|
CWE-98
|
High
|