Exposição de WooCommerce
Ecommerce, WordPress plugins1.807
score de exposição
591.334
sites usam
0
em exploração
158
críticos
CVEs
2.037 resultadosCVE-2025-39568HIGHWordPress StoreContrl Woocommerce plugin <= 4.1.3 - Arbitrary File Download VulnerabilityEPSS 0.4%CVE-2026-42668HIGHWordPress Email Marketing for WooCommerce by Omnisend plugin <= 1.18.0 - Broken Authentication vulnerabilityEPSS 0.4%CVE-2024-11815MEDIUMPósturinn\'s Shipping with WooCommerce <= 1.3.1 - Reflected Cross-Site ScriptingEPSS 0.4%CVE-2022-29416MEDIUMWordPress Afterpay Gateway for WooCommerce Plugin <= 3.5.0 is vulnerable to Cross Site Scripting (XSS)EPSS 0.4%CVE-2025-9286CRITICALAppy Pie Connect for WooCommerce <= 1.1.2 - Missing Authorization to Unauthenticated Privilege Escalation via reset_user_passwordEPSS 0.4%CVE-2023-37989MEDIUMWordPress Easyship WooCommerce Shipping Rates plugin <= 0.9.0 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-37969MEDIUMWordPress Checkout with Zelle on Woocommerce plugin <= 3.1 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2025-30839MEDIUMWordPress Taxi Booking Manager for WooCommerce plugin <= 1.2.1 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2025-6025HIGHOrder Tip for WooCommerce <= 1.5.4 - Unauthenticated Tip Manipulation to Negative Value Leading to Unauthorized DiscountsEPSS 0.4%CVE-2024-9170MEDIUMBooster for WooCommerce <= 7.2.3 - Authenticated (ShopManager+) Stored Cross-Site Scripting via wcj_product_meta ShortcodeEPSS 0.4%CVE-2026-2582MEDIUMGermanized for WooCommerce <= 3.20.5 - Unauthenticated Arbitrary Shortcode ExecutionEPSS 0.4%CVE-2022-4974MEDIUMFreemius SDK <= 2.4.2 - Missing Authorization ChecksEPSS 0.4%CVE-2024-0797MEDIUMActive Products Tables for WooCommerce. Professional products tables for WooCommerce store <= 1.0.6.1 - Missing AuthorizationEPSS 0.4%CVE-2024-53817HIGHWordPress Acowebs Product Labels For Woocommerce plugin <= 1.5.8 - SQL Injection vulnerabilityEPSS 0.4%CVE-2024-38699HIGHWordPress Wallet System for WooCommerce plugin <= 2.5.13 - Sensitive Data Exposure via Exported File vulnerabilityEPSS 0.4%CVE-2024-37935HIGHWordPress Woocommerce OpenPos plugin <= 6.4.4 - Unauthenticated Sensitive Data Exposure vulnerabilityEPSS 0.4%CVE-2024-35167MEDIUMWordPress Envo's Elementor Templates & Widgets for WooCommerce plugin <=1.4.8 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2024-3991MEDIUMShopLentor – WooCommerce Builder for Elementor & Gutenberg +12 Modules – All in One Solution (formerly WooLentor) <= 2.8.7 - Authenticated (contributor+) Stored Cross-Site Scripting via _idEPSS 0.4%CVE-2025-47649HIGHWordPress Open Close WooCommerce Store plugin <= 4.9.9 - Local File Inclusion vulnerabilityEPSS 0.4%CVE-2022-47182MEDIUMWordPress APIExperts Square for WooCommerce plugin <= 4.4.1 - Broken Access ControlEPSS 0.4%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →