Exposição de WooCommerce
Ecommerce, WordPress plugins1.776
score de exposição
591.334
sites usam
0
em exploração
157
críticos
CVEs
2.028 resultadosCVE-2024-8922HIGHProduct Enquiry for WooCommerce <= 2.2.33.33 - Authenticated (Author+) PHP Object Injection in enquiry_detail.phpEPSS 0.8%CVE-2024-1173HIGHWP ERP | Complete HR solution with recruitment & job listings | WooCommerce CRM & Accounting <= 1.13.1 - Authenticated (AccountingManager+) SQL InjectionEPSS 0.8%CVE-2024-12313HIGHCompare Products for WooCommerce <= 3.2.1 - Unauthenticated PHP Object InjectionEPSS 0.8%CVE-2024-7258HIGHWooCommerce Google Feed Manager <= 2.8.0 - Missing Authorization to Authenticated (Contributor+) Arbitrary File DeletionEPSS 0.8%CVE-2022-38134MEDIUMWordPress Customer Reviews for WooCommerce plugin <= 5.3.5 - Authenticated Broken Access Control vulnerabilityEPSS 0.8%CVE-2024-6027CRITICALThemify - WooCommerce Product Filter <= 1.4.9 - Unauthenticated SQL Injection via conditions ParameterEPSS 0.8%CVE-2026-1988HIGHFlexi Product Slider and Grid for WooCommerce <= 1.0.5 - Authenticated (Contributor+) Local File Inclusion via 'theme' Shortcode AttributeEPSS 0.8%CVE-2024-3061HIGHHUSKY – Products Filter Professional for WooCommerce <= 1.3.5.2 - Authenticated (Admin+) Local File InclusionEPSS 0.8%CVE-2025-1913HIGHProduct Import Export for WooCommerce <= 2.5.0 - Authenticated (Admin+) PHP Object Injection via form_data ParameterEPSS 0.8%CVE-2021-39309MEDIUMParsian Bank Gateway for Woocommerce <= 1.0 Reflected Cross-Site ScriptingEPSS 0.8%CVE-2021-39314MEDIUMWooCommerce EnvioPack <= 1.2 Reflected Cross-Site ScriptingEPSS 0.8%CVE-2021-39308MEDIUMWooCommerce myghpay Payment Gateway <= 3.0 Reflected Cross-Site ScriptingEPSS 0.8%CVE-2022-1673—WooCommerce Green Wallet Gateway < 1.0.2 - Reflected Cross Site Scripting in checkout pageEPSS 0.8%CVE-2021-25001—Booster for WooCommerce < 5.4.9 - Reflected Cross-Site Scripting in Product XML Feeds ModuleEPSS 0.8%CVE-2021-25000—Booster for WooCommerce < 5.4.9 - Reflected Cross-Site Scripting in General ModuleEPSS 0.8%CVE-2021-24999—Booster for Woocommerce < 5.4.9 - Reflected Cross-Site Scripting in PDF Invoicing ModuleEPSS 0.8%CVE-2025-1769MEDIUMProduct Import Export for WooCommerce <= 2.5.0 - Directory Traversal to Authenticated (Administrator+) Limited Arbitrary File Read via download_file FunctionEPSS 0.8%CVE-2024-11423HIGHUltimate Gift Cards for WooCommerce <= 3.0.6 - Missing Authorization to Infinite Money GlitchEPSS 0.8%CVE-2024-10857MEDIUMProduct Input Fields for WooCommerce <= 1.9 - Authenticated (Contributor+) Arbitrary File ReadEPSS 0.8%CVE-2024-1308HIGHWooCommerce Cloak Affiliate Links <= 1.0.33 - Missing Authorization to Unauthenticated Permalink ModificationEPSS 0.7%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →