| CVE-2024-1718 | Claudio Sanches – Checkout Cielo for WooCommerce <= 1.1.0 - Insufficient Verification of Data Authenticity to Order Payment Status Update | claudiosanches | Claudio Sanches – Checkout Cielo for WooCommerce | Medium | 5.3 | 2024-06-04 05:32:14 | Deep Dive |
| CVE-2023-35881 | WordPress WooCommerce One Page Checkout plugin <= 2.3.0 - Local File Inclusion vulnerability | WooCommerce | WooCommerce One Page Checkout | High | 7.6 | 2024-05-17 06:46:48 | Deep Dive |
| CVE-2022-45070 | WordPress Conditional Checkout Fields for WooCommerce plugin <= 1.2.3 - Broken Authentication vulnerability | FmeAddons | Conditional Checkout Fields for WooCommerce | Medium | 5.3 | 2024-05-17 06:27:26 | Deep Dive |
| CVE-2024-2752 | Where Did You Hear About Us Checkout Field for WooCommerce <= 1.3.1 - Authenticated (Shop Manager+) Stored Cross-Site Scripting | wooassist | Where Did You Hear About Us Checkout Field for WooCommerce | Medium | 5.5 | 2024-05-02 16:52:54 | Deep Dive |
| CVE-2024-33956 | WordPress Custom WooCommerce Checkout Fields Editor plugin <= 1.3.0 - Broken Access Control vulnerability | ThemeLocation | Custom WooCommerce Checkout Fields Editor | Medium | 4.3 | 2024-05-02 11:24:42 | Deep Dive |
| CVE-2024-31262 | WordPress WooCommerce Checkout Field Editor (Checkout Manager) plugin <= 2.1.8 - Cross Site Request Forgery (CSRF) vulnerability | Jcodex | WooCommerce Checkout Field Editor (Checkout Manager) | Medium | 5.4 | 2024-04-12 12:49:48 | Deep Dive |
| CVE-2024-30518 | WordPress Custom WooCommerce Checkout Fields Editor plugin <= 1.3.0 - Cross Site Request Forgery (CSRF) vulnerability | ThemeLocation | Custom WooCommerce Checkout Fields Editor | Medium | 4.3 | 2024-03-29 15:54:43 | Deep Dive |
| CVE-2024-24719 | WordPress Kikote plugin <= 1.8.9 - Broken Access Control vulnerability | Uriahs Victor | Location Picker at Checkout for WooCommerce | Medium | 4.3 | 2024-03-26 11:31:23 | Deep Dive |
| CVE-2024-1697 | Custom WooCommerce Checkout Fields Editor <= 1.3.1 - Authenticated (Subscriber+) Stored Cross-Site Scripting | themelocation | Custom WooCommerce Checkout Fields Editor | Medium | 6.4 | 2024-03-23 01:57:40 | Deep Dive |
| CVE-2024-25925 | WordPress WooCommerce Easy Checkout Field Editor, Fees & Discounts Plugin <= 3.5.12 is vulnerable to Arbitrary File Upload | SYSBASICS | WooCommerce Easy Checkout Field Editor, Fees & Discounts | Critical | 10.0 | 2024-02-26 15:09:16 | Deep Dive |
| CVE-2024-24885 | WordPress Woocommerce Vietnam Checkout Plugin <= 2.0.7 is vulnerable to Cross Site Scripting (XSS) | Lê Văn Toản | Woocommerce Vietnam Checkout | Medium | 5.9 | 2024-02-08 11:16:49 | Deep Dive |
| CVE-2023-50856 | WordPress Funnel Builder for WordPress by FunnelKit Plugin <= 2.14.3 is vulnerable to SQL Injection | FunnelKit | Funnel Builder for WordPress by FunnelKit – Customize WooCommerce Checkout Pages, Create Sales Funnels & Maximize Profits | High | 7.6 | 2023-12-28 11:01:04 | Deep Dive |
| CVE-2023-5325 | Woocommerce Vietnam Checkout < 2.0.6 - Unauthenticated Stored XSS | Unknown | Woocommerce Vietnam Checkout | 高危 | - | 2023-11-27 16:22:03 | Deep Dive |
| CVE-2023-47657 | WordPress Direct Checkout – Quick View – Buy Now For WooCommerce Plugin <= 1.5.8 is vulnerable to Cross Site Scripting (XSS) | GrandPlugins | Direct Checkout – Quick View – Buy Now For WooCommerce | Medium | 5.9 | 2023-11-13 23:43:02 | Deep Dive |
| CVE-2020-36736 | WooCommerce Checkout & Funnel Builder by CartFlows – Create High Converting Stores For WooCommerce <= 1.5.15 - Cross-Site Request Forgery Bypass | brainstormforce | CartFlows – Funnel Builder & Checkout Plugin for WooCommerce | Medium | 4.3 | 2023-07-01 03:30:12 | Deep Dive |
| CVE-2023-28988 | WordPress Direct checkout, Add to cart redirect for Woocommerce Plugin <= 2.1.48 is vulnerable to Cross Site Scripting (XSS) | PI Websolution | Direct checkout, Add to cart redirect, Quick purchase button, Buy now button, Quick View button for WooCommerce | Medium | 5.9 | 2023-06-26 05:05:12 | Deep Dive |
| CVE-2020-36731 | Flexible Checkout Fields for WooCommerce <= 2.3.1 - Unauthenticated Arbitrary Plugin Settings Update | wpdesk | Flexible Checkout Fields for WooCommerce – WooCommerce Checkout Manager | High | 7.2 | 2023-06-07 01:51:54 | Deep Dive |
| CVE-2019-25151 | Funnel Builder <= 1.3.0 - Arbitrary Plugin Activation | brainstormforce | CartFlows – Funnel Builder & Checkout Plugin for WooCommerce | Medium | 5.4 | 2023-06-07 01:51:52 | Deep Dive |
| CVE-2022-46864 | WordPress Woocommerce Custom Checkout Fields Editor With Drag & Drop Plugin <= 0.1 is vulnerable to Cross Site Scripting (XSS) | Umair Saleem | Woocommerce Custom Checkout Fields Editor With Drag & Drop | High | 7.1 | 2023-05-09 11:33:38 | Deep Dive |
| CVE-2022-46843 | WordPress Woocommerce Vietnam Checkout Plugin <= 2.0.4 is vulnerable to Cross Site Scripting (XSS) | Le Van Toan | Woocommerce Vietnam Checkout | High | 7.1 | 2023-03-27 13:55:41 | Deep Dive |