Exposição de WooCommerce

Ecommerce, WordPress plugins

1.807

score de exposição

591.334

sites usam

0

em exploração

158

críticos

CVEs

2.037 resultados

CVE-2025-23452HIGHWordPress EditionGuard for WooCommerce plugin <= 3.4.2 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2024-4482MEDIUMThe Plus Addons for Elementor <= 5.6.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Countdown WidgetEPSS 0.4%CVE-2024-3718MEDIUMThe Plus Addons for Elementor <= 5.5.4 - Authenticated (Contributor+) Stored Cross-Site Scripting via Progress Bar, Header Meta Content, Scroll Navigation, Pricing Table, & Flip BoxEPSS 0.4%CVE-2024-9377MEDIUMProducts, Order & Customers Export for WooCommerce <= 2.0.15 - Reflected Cross-Site ScriptingEPSS 0.4%CVE-2022-41685MEDIUMMultiple Cross-Site Request Forgery (CSRF) vulnerabilities in Integration for Szamlazz.hu & WooCommerce and Csomagpontok és szállítási címkék WooCommerce hez pluginsEPSS 0.4%CVE-2024-8541MEDIUMDiscount Rules for WooCommerce – Create Smart WooCommerce Coupons & Discounts, Bulk Discount, BOGO Coupons <= 2.6.5 - Reflected Cross-Site ScriptingEPSS 0.4%CVE-2025-48123CRITICALWordPress Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light plugin <= 2.4.37 - Remote Code Execution (RCE) VulnerabilityEPSS 0.4%CVE-2026-5617HIGHLogin as User <= 1.0.3 - Authenticated (Subscriber+) Privilege Escalation via 'oclaup_original_admin' CookieEPSS 0.4%CVE-2025-13192HIGHPopup builder with Gamification <= 2.2.0 - Unauthenticated SQL Injection via Multiple REST API EndpointsEPSS 0.4%CVE-2024-5704MEDIUMXPlainer – WooCommerce Product FAQ [WooCommerce Accordion FAQ Plugin] <= 1.7.0 - Missing Authorization to Authenticated (Subscriber+) Settings UpdateEPSS 0.4%CVE-2021-4391MEDIUMUltimate Gift Cards for WooCommerce <= 2.1.1 - Cross-Site Request Forgery BypassEPSS 0.4%CVE-2024-27994HIGHWordPress YITH WooCommerce Product Add-Ons plugin <= 4.5.0 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2024-8788MEDIUMEU/UK VAT Manager for WooCommerce <= 2.12.12 - Reflected Cross-Site ScriptingEPSS 0.4%CVE-2024-8872MEDIUMStore Hours for WooCommerce <= 4.3.20 - Reflected Cross-Site ScriptingEPSS 0.4%CVE-2024-50421MEDIUMWordPress PDF Invoices & Packing Slips for WooCommerce plugin <= 3.8.6 - Broken Access Control vulnerabilityEPSS 0.4%CVE-2023-47698HIGHWordPress Japanized For WooCommerce plugin <= 2.6.4 - Multiple Broken Access Control vulnerabilityEPSS 0.4%CVE-2024-22288HIGHWordPress WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels plugin <= 4.4.0 - Reflected Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2025-23429HIGHWordPress Altima Lookbook Free for WooCommerce plugin <= 1.1.0 - Cross Site Scripting (XSS) vulnerabilityEPSS 0.4%CVE-2024-0821MEDIUMCost of Goods Sold (COGS): Cost & Profit Calculator for WooCommerce <= 3.2.8 - Reflected Cross-Site ScriptingEPSS 0.4%CVE-2024-0629MEDIUM2Checkout Payment Gateway for WooCommerce <= 6.2 - Missing Authorization via sniff_insEPSS 0.4%

← anteriorpágina 37 / 102próxima →

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →