Active Products Tables for WooCommerce | Cross-Site Scripting (XSS) |
Advanced Woo Labels | Cross-Site Scripting (XSS) |
Ali2Woo Lite | Arbitrary File Upload (BAC) |
Ali2Woo Lite | Broken Access Control (BAC) |
Ali2Woo Lite | Broken Access Control (BAC) |
Ali2Woo Lite | Broken Access Control (BAC) to Cross-Site Scripting (XSS) |
Ali2Woo Lite | Cross-Site Request Forgery (CSRF) to PHP Object Injection |
Ali2Woo Lite | Cross-Site Request Forgery (CSRF) to Cross-Site Scripting (XSS) |
Ali2Woo Lite | Cross-Site Scripting (XSS) |
Authorize.net Payment Gateway For WooCommerce | Insufficient Verification of Data Authenticity to Unauthenticated Payment Bypass (BAC) |
Auto Coupons for WooCommerce | Cross-Site Scripting (XSS) |
Bosa Elementor Addons and Templates for WooCommerce | Broken Access Control (BAC) |
Checkout Field Editor for WooCommerce (Pro) | Unauthenticated Arbitrary File Deletion (BAC) |
CoDesigner WooCommerce Builder for Elementor | Cross-Site Scripting (XSS) via Multiple Widgets |
CoDesigner WooCommerce Builder for Elementor | Unauthenticated PHP Object Injection |
Empty Cart Button for WooCommerce | Cross-Site Scripting (XSS) |
Extra Product Options for WooCommerce | Broken Access Control (BAC) |
FooEvents for WooCommerce | Arbitrary File Upload (BAC) |
Laybuy Payment Extension for WooCommerce | Broken Access Control (BAC) |
License Manager for WooCommerce | Improper Authorization to Private Information Exposure |
MIMO Woocommerce Order Tracking | Cross-Site Scripting (XSS) |
PPOM for WooCommerce | Content Injection (RCE) |
Simple COD Fees for WooCommerce | Broken Access Control (BAC) |
Social Login Lite For WooCommerce | Authentication Bypass (BAC) |
Themify – WooCommerce Product Filter | Unauthenticated SQL Injection (SQLi) via conditions Parameter |
Ultimate Custom Add To Cart Button (Ajax) For WooCommerce by Binary Carpenter | Broken Access Control (BAC) to Cross-Site Scripting (XSS) |
WooBuddy | Broken Access Control (BAC) |
WooCommerce | Content Injection (RCE) |
WooCommerce | Cross-Site Scripting (XSS) |
Woocommerce Customers Order History | Broken Access Control (BAC) |
WooCommerce Dropshipping | Unauthenticated Arbitrary Email Sending |
WooCommerce Social Login | Unauthenticated PHP Object Injection |
WooCommerce Social Login | Email Verification Bypass (BAC) |
WooCommerce Tools | Missing Authorization (BAC) to Plugin Module Deactivation (BAC) |
Woody ad snippets | Cross-Site Scripting (XSS) |
Woody ad snippets | Remote Code Execution (RCE) |
YITH WooCommerce Product Add-Ons | Content Injection (RCE) |
YITH WooCommerce Tab Manager | Cross-Site Scripting (XSS) |