Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 212 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2026-4140 Ni WooCommerce Order Export <= 3.1.6 - Cross-Site Request Forgery to Settings Update via ni_order_export_action AJAX Action anziaNi WooCommerce Order Export Medium 4.3 2026-04-22 07:45:34 Deep Dive
CVE-2026-4880 Barcode Scanner (+Mobile App) <= 1.11.0 - Unauthenticated Privilege Escalation via Insecure Token Authentication ukrsolutionBarcode Scanner (+Mobile App) – Inventory manager, Order fulfillment system, POS (Point of Sale) Critical 9.8 2026-04-15 23:25:50 Deep Dive
CVE-2025-15635 WordPress Smart Online Order for Clover plugin <= 1.6.0 - Cross Site Request Forgery (CSRF) vulnerability ZAYTECHSmart Online Order for Clover Medium 4.3 2026-04-15 15:49:53 Deep Dive
CVE-2026-39602 WordPress Order Tracking plugin <= 3.4.3 - Broken Access Control vulnerability RustauriusOrder Tracking--2026-04-08 08:30:22 Deep Dive
CVE-2025-15484 Order Notification for WooCommerce < 3.6.3 - Unauthenticated WooCommerce REST Permission Bypass UnknownOrder Notification for WooCommerce--2026-04-01 06:00:05 Deep Dive
CVE-2026-5019 code-projects Simple Food Order System Parameter all-orders.php sql injection code-projectsSimple Food Order System High 7.3 2026-03-28 23:30:12 Deep Dive
CVE-2026-5018 code-projects Simple Food Order System Parameter register-router.php sql injection code-projectsSimple Food Order System High 7.3 2026-03-28 22:30:16 Deep Dive
CVE-2026-5017 code-projects Simple Food Order System Parameter all-tickets.php sql injection code-projectsSimple Food Order System High 7.3 2026-03-28 22:30:13 Deep Dive
CVE-2026-1378 WP Posts Re-order <= 1.0 - Cross-Site Request Forgery to Settings Update suifengtecWP Posts Re-order Medium 4.3 2026-03-21 03:26:37 Deep Dive
CVE-2026-4319 code-projects Simple Food Order System add-item.php sql injection code-projectsSimple Food Order System High 7.3 2026-03-17 17:02:11 Deep Dive
CVE-2026-32373 WordPress SMS Alert Order Notifications plugin <= 3.9.0 - Broken Access Control vulnerability Cozy VisionSMS Alert Order Notifications 中危 -2026-03-13 11:42:07 Deep Dive
CVE-2026-27374 WordPress WooCommerce Order Details plugin <= 3.1 - Broken Access Control vulnerability vanquishWooCommerce Order Details 中危 -2026-03-05 05:53:56 Deep Dive
CVE-2026-3263 go2ismail Asp.Net-Core-Inventory-Order-Management-System Security API improper authorization go2ismailAsp.Net-Core-Inventory-Order-Management-System Medium 6.3 2026-02-26 21:32:09 Deep Dive
CVE-2026-3262 go2ismail Asp.Net-Core-Inventory-Order-Management-System Administrative redirect go2ismailAsp.Net-Core-Inventory-Order-Management-System Medium 6.3 2026-02-26 21:02:11 Deep Dive
CVE-2026-24494 SQL injection vulnerability in Order Up Online Ordering System Order UpOnline Ordering System Critical 9.8 2026-02-23 01:24:48 Deep Dive
CVE-2025-14270 OneClick Chat to Order <= 1.0.9 - Missing Authorization to Authenticated (Editor+) Plugin Settings Update walterpinemOneClick Chat to Order Low 2.7 2026-02-19 04:36:21 Deep Dive
CVE-2025-12075 Order Splitter for WooCommerce <= 5.3.5 - Missing Authorization to Authenticated (Subscriber+) Order Information Exposure fahadmahmoodOrder Splitter for WooCommerce Medium 4.3 2026-02-18 04:35:44 Deep Dive
CVE-2026-1833 WaMate Confirm <= 2.0.1 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Phone Number Blocking/Unblocking sm_rasmyWaMate Confirm – Order Confirmation Medium 5.3 2026-02-11 08:26:28 Deep Dive
CVE-2026-1381 Order Minimum/Maximum Amount Limits for WooCommerce <= 4.6.8 - Authenticated (Shop Manager+) Stored Cross-Site Scripting via Hide Add to Cart Content Fields wpcodefactoryOrder Minimum/Maximum Amount Limits for WooCommerce Medium 4.4 2026-01-28 08:26:55 Deep Dive
CVE-2026-24567 WordPress Anything Order by Terms plugin <= 1.4.0 - Broken Access Control vulnerability briarincAnything Order by Terms Medium 4.3 2026-01-23 14:28:56 Deep Dive