Exposición de WooCommerce

Ecommerce, WordPress plugins

1807

score de exposición

591.334

sitios usan

0

en explotación

158

críticos

CVEs

2037 resultados

CVE-2023-2452MEDIUMAdvanced Woo Search <= 2.77 - Authenticated (Admin+) Stored Cross-Site ScriptingEPSS 0.5%CVE-2024-6666HIGHWP ERP <= 1.13.0 - Authenticated (Accounting Manager+) SQL Injection via vendor_idEPSS 0.5%CVE-2024-12432HIGHWPC Shop as a Customer for WooCommerce <= 1.2.8 - Authentication Bypass Due to Insufficiently Unique KeyEPSS 0.5%CVE-2025-39364HIGHWordPress Product Category Slider for WooCommerce plugin <= 4.3.4 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2024-43132CRITICALWordPress Docket (WooCommerce Collections / Wishlist / Watchlist) plugin < 1.7.0 - Unauthenticated SQL Injection vulnerabilityEPSS 0.5%CVE-2023-50857HIGHWordPress Automation By Autonami Plugin <= 2.6.1 is vulnerable to SQL InjectionEPSS 0.5%CVE-2024-13831HIGHTabs for WooCommerce <= 1.0.0 - Authentiated (Shop Manager+) PHP Object Injection in product_has_custom_tabsEPSS 0.5%CVE-2023-0079MEDIUMCustomer Reviews for WooCommerce < 5.17.0 - Contributor+ Stored XSSEPSS 0.5%CVE-2025-28942CRITICALWordPress Trust Payments Gateway for WooCommerce plugin <= 1.1.4 - SQL Injection vulnerabilityEPSS 0.5%CVE-2021-42367MEDIUMVariation Swatches for WooCommerce <= 2.1.1 Authenticated Stored Cross-Site ScriptingEPSS 0.5%CVE-2024-3199MEDIUMThe Plus Addons for Elementor <= 5.4.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown WidgetEPSS 0.5%CVE-2023-5348—Product Catalog Enquiry for WooCommerce < 5.0.3 - Unauthenticated Stored XSS via Arbitrary Setting UpdateEPSS 0.5%CVE-2024-12627HIGHCoupon X: Discount Pop Up, Promo Code Pop Ups, Announcement Pop Up, WooCommerce Popups <= 1.3.5 - Missing Authorization to Authenticated (Contributor+) PHP Object InjectionEPSS 0.5%CVE-2023-52234MEDIUMWordPress Booster Elite for WooCommerce plugin < 7.1.2 - Auth. Sensitive Data Exposure vulnerabilityEPSS 0.5%CVE-2023-52231MEDIUMWordPress Booster Plus for WooCommerce plugin < 7.1.2 - Auth. Sensitive Data Exposure vulnerabilityEPSS 0.5%CVE-2022-2537—WooCommerce PDF Invoices & Packing Slips < 3.0.1 - Reflected Cross-Site ScriptingEPSS 0.5%CVE-2023-49825HIGHWordPress Soledad Theme <= 8.4.1 is vulnerable to SQL InjectionEPSS 0.5%CVE-2024-43310MEDIUMWordPress Print Labels with Barcodes. Create price tags, product labels, order labels for WooCommerce plugin <= 3.4.9 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2025-54713CRITICALWordPress Taxi Booking Manager for WooCommerce plugin <= 1.3.0 - Broken Authentication vulnerabilityEPSS 0.5%CVE-2024-22135HIGHWordPress Order Export & Order Import for WooCommerce Plugin <= 2.4.3 is vulnerable to Arbitrary File UploadEPSS 0.5%

← anteriorpágina 21 / 102siguiente →

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →