Exposição de WooCommerce
Ecommerce, WordPress plugins1.807
score de exposição
591.334
sites usam
0
em exploração
158
críticos
CVEs
2.037 resultadosCVE-2024-12421MEDIUMCoupon Affiliates – Affiliate Plugin for WooCommerce <= 5.16.7.1 - Unauthenticated Arbitrary Shortcode Execution and Reflected Cross-Site ScriptingEPSS 0.5%CVE-2023-37971MEDIUMWordPress WooCommerce Product Stock Alert plugin <= 2.0.1 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-10882MEDIUMProduct Delivery Date for WooCommerce - Lite <= 2.8.0 - Reflected Cross-Site ScriptingEPSS 0.5%CVE-2023-51408MEDIUMWordPress WP Optin Wheel Plugin <= 1.4.3 is vulnerable to Sensitive Data ExposureEPSS 0.5%CVE-2023-4941MEDIUMBEAR <= 1.1.3.3 - Missing Authorization to Product ManipulationEPSS 0.5%CVE-2023-5638MEDIUMBooster for WooCommerce <= 7.1.2 - Authenticated (Contributor+) Stored Cross-Site Scripting via ShortcodeEPSS 0.5%CVE-2024-0251MEDIUMAdvanced Woo Search <= 2.96 - Reflected Cross-Site ScriptingEPSS 0.5%CVE-2024-30477MEDIUMWordPress Klarna Payments for WooCommerce plugin <= 3.2.4 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-0166MEDIUMPickPlugins Product Slider for WooCommerce < 1.13.42 - Contributor+ Stored XSSEPSS 0.5%CVE-2023-0144MEDIUMEvent Manager and Tickets Selling Plugin for WooCommerce < 3.8.0 - Contributor+ Stored XSSEPSS 0.5%CVE-2024-3964MEDIUMProduct Enquiry for WooCommerce < 3.1.8 - Admin+ Stored XSSEPSS 0.5%CVE-2023-50899MEDIUMWordPress Product Catalog Enquiry for WooCommerce by MultiVendorX plugin <= 5.0.2 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2023-44149MEDIUMWordPress Brands for WooCommerce plugin <= 3.8.2.2 - Broken Access Control vulnerabilityEPSS 0.5%CVE-2024-50479CRITICALWordPress Woocommerce Quote Calculator plugin <= 1.1 - SQL Injection vulnerabilityEPSS 0.5%CVE-2025-28955HIGHWordPress Easy Video Player Wordpress & WooCommerce plugin <= 10.0 - Arbitrary File Download VulnerabilityEPSS 0.5%CVE-2024-33944MEDIUMWordPress WooCommerce AWeber Newsletter Subscription plugin <= 4.0.2 - Unauthenticated Access Token Change/Reset vulnerabilityEPSS 0.5%CVE-2026-6072MEDIUMOliver POS <= 2.4.2.6 - Unauthenticated Authorization Bypass Through User-Controlled Key to 'OliverAuth' HeaderEPSS 0.5%CVE-2022-44633MEDIUMWordPress YITH WooCommerce Gift Cards Premium plugin <= 3.23.1 - Unauth. Gift Card Creation Leading to Stored XSS vulnerabilityEPSS 0.5%CVE-2024-13553CRITICALSMS Alert Order Notifications – WooCommerce <= 3.7.9 - Unauthenticated Account Takeover/Privilege EscalationEPSS 0.5%CVE-2025-62008HIGHWordPress Product Table For WooCommerce plugin <= 1.2.4 - PHP Object Injection vulnerabilityEPSS 0.5%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →