Exposição de WooCommerce
Ecommerce, WordPress plugins1.776
score de exposição
591.334
sites usam
0
em exploração
157
críticos
CVEs
2.028 resultadosCVE-2024-13359HIGHProduct Input Fields for WooCommerce <= 1.12.0 - Unauthenticated Limited File UploadEPSS 0.8%CVE-2024-10627CRITICALWooCommerce Support Ticket System <= 17.7 - Unauthenticated Arbitrary File UploadEPSS 0.8%CVE-2024-2344HIGHAvada <= 7.11.6 - Authenticated (Admin+) SQL Injection via entryEPSS 0.8%CVE-2024-2025HIGHBuddyPress WooCommerce My Account Integration. Create WooCommerce Member Pages <= 3.4.20 - Authenticated (Subscriber+) PHP Object Injection in get_simple_requestEPSS 0.8%CVE-2025-12975HIGHCTX Feed – WooCommerce Product Feed Manager <= 6.6.11 - Missing Authorization to Authenticated (Shop Manager+) Arbitrary Plugin InstallationEPSS 0.8%CVE-2022-0215HIGHXootiX Plugins <= Various Versions Cross-Site Request Forgery to Arbitrary Options UpdateEPSS 0.8%CVE-2022-1465—WPC Smart Wishlist for WooCommerce < 2.9.9 - Reflected Cross-Site ScriptingEPSS 0.8%CVE-2024-10804HIGHUltimate Video Player <= 10.0 - Unauthenticated Arbitrary File DownloadEPSS 0.8%CVE-2021-4379MEDIUMWooCommerce Multi Currency <= 2.1.17 - Missing AuthorizationEPSS 0.8%CVE-2021-24679—Bitcoin / AltCoin Payment Gateway for WooCommerce < 1.6.1 - Reflected Cross-Site ScriptingEPSS 0.8%CVE-2021-24588—SMS Alert Order Notifications – WooCommerce < 3.4.7 Authenticated Cross Site ScriptingEPSS 0.8%CVE-2023-32242CRITICALWordPress Woodmart Core Plugin <= 1.0.36 is vulnerable to PHP Object InjectionEPSS 0.8%CVE-2022-4108MEDIUMWholesale Market for WooCommerce < 1.0.8 - Admin+ Arbitrary File DownloadEPSS 0.8%CVE-2021-4332MEDIUMThe Plus Addons for Elementor PRO <= 4.1.9 & The Plus Addons for Elementor <= 2.0.6 - Authenticated (Contributor+) Arbitrary File ReadEPSS 0.8%CVE-2022-1532—Themify - WooCommerce Product Filter < 1.3.8 - Reflected Cross-Site ScriptingEPSS 0.8%CVE-2025-32587HIGHWordPress WooCommerce Pickupp plugin <= 2.4.3 - Local File Inclusion vulnerabilityEPSS 0.8%CVE-2021-24938—WooCommerce Currency Switcher < 1.3.7.1 - Reflected Cross-Site ScriptingEPSS 0.8%CVE-2024-12040HIGHProduct Carousel Slider & Grid Ultimate for WooCommerce <= 1.9.10 - Authenticated (Contributor+) Local File Inclusion via 'theme'EPSS 0.8%CVE-2022-46809MEDIUMWordPress ReviewX Plugin <= 1.6.7 is vulnerable to CSV InjectionEPSS 0.8%CVE-2025-5391HIGHWooCommerce Purchase Orders <= 1.0.2 - Authenticated (Subscriber+) Arbitrary File DeletionEPSS 0.8%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →