Exposición de WooCommerce
Ecommerce, WordPress plugins1807
score de exposición
591.334
sitios usan
0
en explotación
158
críticos
CVEs
2037 resultadosCVE-2022-50972CRITICALWooCommerce 7.1.0 Remote Code Execution via class-wc-meta-box-product-images.phpEPSS 0.6%CVE-2022-45810MEDIUMWordPress Email Subscribers & Newsletters Plugin <= 5.5.2 is vulnerable to CSV InjectionEPSS 0.6%CVE-2024-13824CRITICALCiyaShop - Multipurpose WooCommerce Theme <= 4.19.0 - Unauthenticated PHP Object InjectionEPSS 0.6%CVE-2025-13329CRITICALFile Uploader for WooCommerce <= 1.0.3 - Unauthenticated Arbitrary File Upload via add-image-dataEPSS 0.6%CVE-2024-4039MEDIUMOrders Tracking for WooCommerce <= 1.2.10 - Unauthenticated Arbitrary Shortcode ExecutionEPSS 0.6%CVE-2022-23981MEDIUMWordPress Perfect Brands for WooCommerce plugin <= 2.0.4 - Set Featured Brand vulnerabilityEPSS 0.6%CVE-2023-3677HIGHWooCommerce PDF Invoice Builder <= 1.2.89 - Authenticated (Subscriber+) SQL Injection via ExportEPSS 0.6%CVE-2025-31087CRITICALWordPress Multiple Shipping And Billing Address For Woocommerce plugin <= 1.5 - PHP Object Injection VulnerabilityEPSS 0.6%CVE-2025-14301CRITICALIntegration Opvius AI for WooCommerce <= 1.3.0 - Unauthenticated Arbitrary File Deletion/Read via Path TraversalEPSS 0.6%CVE-2024-0913HIGHWP ERP <= 1.13.0 - Authenticated (Accounting Manager+) SQL InjectionEPSS 0.6%CVE-2023-40002MEDIUMWordPress Booster for WooCommerce Plugin <= 7.1.1 is vulnerable to Sensitive Data ExposureEPSS 0.6%CVE-2025-5746CRITICALDrag and Drop Multiple File Upload (Pro) - WooCommerce <= 1.7.1 and 5.0 - 5.0.5 - Unauthenticated Arbitrary File UploadEPSS 0.6%CVE-2018-25325HIGHWoocommerce CSV Importer 3.3.6 Path Traversal File DeletionEPSS 0.6%CVE-2023-23868MEDIUMWordPress Cost of Goods for WooCommerce plugin <= 2.8.6 - Broken Access Control vulnerabilityEPSS 0.6%CVE-2025-39378HIGHWordPress Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light plugin <= 2.4.37 - Local File Inclusion vulnerabilityEPSS 0.6%CVE-2025-39391HIGHWordPress Checkout Field Visibility for WooCommerce plugin <= 1.3.0 - Local File Inclusion vulnerabilityEPSS 0.6%CVE-2024-7503CRITICALWooCommerce - Social Login <= 2.7.5 - Authentication Bypass to Account TakeoverEPSS 0.6%CVE-2021-4376MEDIUMWooCommerce Multi Currency <= 2.1.17 - Missing AuthorizationEPSS 0.6%CVE-2022-2556—MailChimp for Woocommerce < 2.7.2 - Admin+ SSRFEPSS 0.6%CVE-2021-24974—Product Feed PRO for WooCommerce < 11.0.7 - Subscriber+ Settings Update to Stored XSSEPSS 0.6%
¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →