Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 188 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-7607 code-projects Simple Shopping Cart save_order.php sql injection code-projectsSimple Shopping Cart High 7.3 2025-07-14 13:14:06 Deep Dive
CVE-2025-24735 WordPress Chatra Live Chat + ChatBot + Cart Saver plugin <= 1.0.11 - Cross Site Scripting (XSS) Vulnerability ChatraChatra Live Chat + ChatBot + Cart Saver Medium 5.9 2025-07-04 08:42:05 Deep Dive
CVE-2025-50008 WordPress WooCommerce Manager – Customize and Control Cart page, Add to Cart button, Checkout fields easily plugin <= 1.2.4.5 - Broken Access Control Vulnerability cscodeWooCommerce Manager &#8211; Customize and Control Cart page, Add to Cart button, Checkout fields easily Medium 5.4 2025-06-20 15:04:05 Deep Dive
CVE-2025-52783 WordPress Change Cart button Colors WooCommerce plugin <= 1.0 - Cross Site Request Forgery (CSRF) Vulnerability themelocationChange Cart button Colors WooCommerce High 7.1 2025-06-20 15:03:44 Deep Dive
CVE-2025-4387 Abandoned Cart Pro for WooCommerce <= 9.16.0 - Authenticated (Subscriber+) Arbitrary File Upload Tyche SoftwaresAbandoned Cart Pro for WooCommerce High 8.8 2025-06-10 03:41:38 Deep Dive
CVE-2025-47608 WordPress Recover abandoned cart for WooCommerce plugin <= 2.5 - SQL Injection Vulnerability sonalsinha21Recover abandoned cart for WooCommerce Critical 9.3 2025-06-09 15:54:08 Deep Dive
CVE-2025-5482 Sunshine Photo Cart <= 3.4.11 - Authenticated (Subscriber+) Privilege Escalation sunshinephotocartSunshine Photo Cart – Client Photo Gallery & Photo Proofing for Photographers High 8.8 2025-06-04 07:21:45 Deep Dive
CVE-2025-31056 WordPress WhatsCart plugin <= 1.1.0 - SQL Injection vulnerability TechspawnWhatsCart - Whatsapp Abandoned Cart Recovery, Order Notifications, Chat Box, OTP for WooCommerce Critical 9.3 2025-05-23 12:44:09 Deep Dive
CVE-2025-39356 WordPress Foodbakery Sticky Cart plugin <= 3.2 - PHP Object Injection vulnerability ChimpstudioFoodbakery Sticky Cart Critical 9.8 2025-05-19 19:45:19 Deep Dive
CVE-2025-48254 WordPress Change Add to Cart Button Text for WooCommerce plugin <= 2.2.2 - Cross Site Scripting (XSS) Vulnerability WPFactoryChange Add to Cart Button Text for WooCommerce Medium 6.5 2025-05-19 14:44:59 Deep Dive
CVE-2025-48250 WordPress Coupons & Add to Cart by URL Links for WooCommerce plugin <= 1.7.7 - Cross Site Scripting (XSS) Vulnerability WPFactoryCoupons &amp; Add to Cart by URL Links for WooCommerce Medium 6.5 2025-05-19 14:44:57 Deep Dive
CVE-2024-11140 Real WP Shop Lite Ajax eCommerce Shopping Cart <= 2.0.8 - Admin+ Stored XSS UnknownReal WP Shop Lite Ajax eCommerce Shopping Cart--2025-05-15 20:06:47 Deep Dive
CVE-2025-47538 WordPress Cart tracking for WooCommerce plugin <= 1.0.17 - SQL Injection Vulnerability wpdeverCart tracking for WooCommerce High 7.6 2025-05-07 14:20:14 Deep Dive
CVE-2025-3890 WordPress Simple PayPal Shopping Cart <= 5.1.3 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode mra13Simple Shopping Cart Medium 6.4 2025-05-01 11:11:42 Deep Dive
CVE-2025-3889 WordPress Simple PayPal Shopping Cart <= 5.1.3 - Insecure Direct Object Reference via 'quantity' mra13Simple Shopping Cart Medium 5.3 2025-05-01 11:11:42 Deep Dive
CVE-2025-3874 WordPress Simple PayPal Shopping Cart <= 5.1.3 - Insecure Direct Object Reference mra13Simple Shopping Cart Medium 6.5 2025-05-01 11:11:42 Deep Dive
CVE-2025-3530 WordPress Simple PayPal Shopping Cart <= 5.1.2 - Unauthenticated Product Price Manipulation mra13Simple Shopping Cart High 7.5 2025-04-23 07:06:50 Deep Dive
CVE-2025-3529 WordPress Simple PayPal Shopping Cart <= 5.1.2 - Unauthenticated Information Exposure via file_url Parameter mra13Simple Shopping Cart High 8.2 2025-04-23 07:06:49 Deep Dive
CVE-2025-46243 WordPress Recover abandoned cart for WooCommerce plugin <= 2.2 - Cross Site Request Forgery (CSRF) Vulnerability sonalsinha21Recover abandoned cart for WooCommerce Medium 4.3 2025-04-22 09:53:29 Deep Dive
CVE-2025-32195 WordPress Ecwid Shopping Cart plugin <= 7.0 - Cross Site Scripting (XSS) vulnerability Ecwid by Lightspeed Ecommerce Shopping CartEcwid Shopping Cart Medium 6.5 2025-04-04 15:59:07 Deep Dive