Exposição de WooCommerce
Ecommerce, WordPress plugins1.807
score de exposição
591.334
sites usam
0
em exploração
158
críticos
CVEs
2.037 resultadosCVE-2024-1677MEDIUMPrint Labels with Barcodes. Create price tags, product labels, order labels for WooCommerce <= 3.4.6 - Improper AuthorizationEPSS 0.5%CVE-2024-13472HIGHWooCommerce Product Table Lite <= 3.9.4 - Unauthenticated Arbitrary Shortcode Execution & Reflected Cross-Site ScriptingEPSS 0.5%CVE-2023-32963MEDIUMWordPress Predictive Search for WooCommerce plugin <= 5.8.0 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-6353HIGHWallet for WooCommerce <= 1.5.4 - Authenticated (Subscriber+) SQL Injection via 'search[value]'EPSS 0.5%CVE-2023-0405MEDIUMGPT3 AI Content Writer < 1.4.38 - Subscriber+ Arbitrary Post Content UpdateEPSS 0.5%CVE-2022-46811MEDIUMWordPress ALD Dropshipping and Fulfillment for AliExpress and WooCommerce plugin <= 1.0.21 - Broken Access Control + CSRFEPSS 0.5%CVE-2022-46807MEDIUMWordPress Stock Sync for WooCommerce plugin <= 2.3.2 - Broken Access ControlEPSS 0.5%CVE-2022-3536HIGHRole Based Pricing for WooCommerce < 1.6.3 - Subscriber+ PHAR DeserializationEPSS 0.5%CVE-2024-0702HIGHOliver POS – A WooCommerce Point of Sale (POS) <= 2.4.2.1 - Missing AuthorizationEPSS 0.5%CVE-2025-30879HIGHWordPress MC Woocommerce Wishlist plugin <= 1.8.9 - SQL Injection vulnerabilityEPSS 0.5%CVE-2025-31405HIGHWordPress Fami WooCommerce Compare plugin <= 1.0.5 - Local File Inclusion vulnerabilityEPSS 0.5%CVE-2024-35634MEDIUMWoocommerce – Recent Purchases plugin <= 1.0.1 - File Inclusion vulnerabilityEPSS 0.5%CVE-2023-4423MEDIUMWP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce <= 3.1.37.1 - Authenticated (Admin+) Stored Cross-Site ScriptingEPSS 0.5%CVE-2026-1714HIGHShopLentor <= 3.3.2 - Unauthenticated Email Relay Abuse via 'woolentor_suggest_price_action' AJAX ActionEPSS 0.5%CVE-2022-36284MEDIUMWordPress Affiliate For WooCommerce premium plugin <= 4.7.0 - Authenticated IDOR vulnerability leading to PayPal email changeEPSS 0.5%CVE-2024-6000HIGHFooEvents for WooCommerce <= 1.19.20 - Improper Authorization to (Contributor+) Arbitrary File UploadEPSS 0.5%CVE-2024-24799MEDIUMWordPress WooCommerce Box Office plugin <= 1.2.2 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-0870MEDIUMYITH WooCommerce Gift Cards <= 4.12.0 - Missing Authorization to Unauthenticated WooCommerce Settings UpdateEPSS 0.5%CVE-2026-22480HIGHWordPress Product Feed for WooCommerce plugin <= 2.3.3 - PHP Object Injection vulnerabilityEPSS 0.5%CVE-2023-0537MEDIUMProduct Slider For WooCommerce Lite <= 1.1.7 - Contributor+ Stored XSSEPSS 0.5%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →