Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 2013 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2025-39563 WordPress Conditional Payments for WooCommerce plugin <= 3.3.0 - Cross Site Request Forgery (CSRF) Vulnerability WP TrioConditional Payments for WooCommerce Medium 6.5 2025-04-16 12:44:33 Deep Dive
CVE-2025-39564 WordPress Conditional Shipping for WooCommerce plugin <= 3.4.0 - Cross Site Request Forgery (CSRF) Vulnerability WP TrioConditional Shipping for WooCommerce Medium 6.5 2025-04-16 12:44:32 Deep Dive
CVE-2025-39579 WordPress Membership For WooCommerce plugin <= 2.8.0 - Cross Site Scripting (XSS) Vulnerability WP SwingsMembership For WooCommerce Medium 6.5 2025-04-16 12:44:25 Deep Dive
CVE-2025-39600 WordPress Integration for WooCommerce and QuickBooks plugin <= 1.3.1 - Cross Site Request Forgery (CSRF) Vulnerability CRM PerksIntegration for WooCommerce and QuickBooks Medium 4.3 2025-04-16 12:44:16 Deep Dive
CVE-2025-39602 WordPress WooCommerce Product Table Lite plugin <= 3.9.5 - Broken Access Control vulnerability WC Product TableWooCommerce Product Table Lite Medium 4.3 2025-04-16 12:44:15 Deep Dive
CVE-2025-26749 WordPress Additional Custom Product Tabs for WooCommerce plugin <= 1.7.0 - Cross Site Scripting (XSS) vulnerability WPFactoryAdditional Custom Product Tabs for WooCommerce Medium 6.5 2025-04-15 21:53:11 Deep Dive
CVE-2025-32929 WordPress Barcode Generator for WooCommerce plugin <= 2.0.4 - Arbitrary Content Deletion vulnerability Dmitry V. (CEO of "UKR Solution")Barcode Generator for WooCommerce High 7.5 2025-04-15 11:58:10 Deep Dive
CVE-2025-32631 WordPress Oxygen MyData for WooCommerce plugin <= 1.0.64 - Arbitrary File Deletion vulnerability oxygensuiteOxygen MyData for WooCommerce High 8.6 2025-04-11 08:43:01 Deep Dive
CVE-2025-32587 WordPress WooCommerce Pickupp plugin <= 2.4.3 - Local File Inclusion vulnerability pickuppWooCommerce Pickupp High 8.1 2025-04-11 08:42:58 Deep Dive
CVE-2025-32586 WordPress ABA PayWay Payment Gateway for WooCommerce Plugin <= 2.1.4 - Reflected Cross Site Scripting (XSS) vulnerability ABA BankABA PayWay Payment Gateway for WooCommerce High 7.1 2025-04-11 08:42:58 Deep Dive
CVE-2025-32568 WordPress EmpikPlace for Woocommerce Plugin <= 1.4.3 - PHP Object Injection vulnerability empikEmpikPlace for Woocommerce Critical 9.8 2025-04-11 08:42:57 Deep Dive
CVE-2025-32541 WordPress WooCommerce Sales MIS Report Plugin <= 4.0.3 - Reflected Cross Site Scripting (XSS) vulnerability infosoftpluginWooCommerce Sales MIS Report High 7.1 2025-04-11 08:42:55 Deep Dive
CVE-2025-32524 WordPress MyWorks WooCommerce Sync for QuickBooks Online plugin <= 2.9.1 - Reflected Cross Site Scripting (XSS) vulnerability MyWorksMyWorks WooCommerce Sync for QuickBooks Online High 7.1 2025-04-11 08:42:53 Deep Dive
CVE-2025-32523 WordPress WooCommerce – Payphone Gateway plugin <= 3.2.0 - Reflected Cross Site Scripting (XSS) vulnerability payphoneWooCommerce – Payphone Gateway High 7.1 2025-04-11 08:42:53 Deep Dive
CVE-2025-31411 WordPress Linet ERP-Woocommerce Integration plugin <= 3.5.12 - Arbitrary File Read/Deletion vulnerability aribhourLinet ERP-Woocommerce Integration Medium 5.9 2025-04-10 10:16:12 Deep Dive
CVE-2025-32236 WordPress Woocommerce Products Reorder Drag Drop Multiple Sort plugin <= 1.9 - Broken Access Control vulnerability VagonicWoocommerce Products Reorder Drag Drop Multiple Sort – Sortable, Rearrange Products Vagonic Medium 4.3 2025-04-10 08:09:47 Deep Dive
CVE-2025-32119 WordPress CardGate Payments for WooCommerce plugin <= 3.2.1 - SQL Injection vulnerability CardGateCardGate Payments for WooCommerce--2025-04-10 08:09:42 Deep Dive
CVE-2025-32687 WordPress Review Stars Count For WooCommerce plugin <= 2.0 - SQL Injection Vulnerability MagnigenieReview Stars Count For WooCommerce High 8.5 2025-04-10 08:09:41 Deep Dive
CVE-2025-2719 Swatchly – WooCommerce Variation Swatches for Products (product attributes: Image swatch, Color swatches, Label swatches) 1.2.8 - 1.4.0 - Missing Authorization to Authenticated (Subscriber+) Limited Options Update hasthemesSwatchly – WooCommerce Variation Swatches for Products (product attributes: Image swatch, Color swatches, Label swatches) Medium 6.5 2025-04-10 07:02:40 Deep Dive
CVE-2025-26888 WordPress WooCommerce Multilingual & Multicurrency plugin <= 5.3.8 - Broken Access Control vulnerability Amir HelzerWooCommerce Multilingual & Multicurrency Medium 5.3 2025-04-09 19:35:43 Deep Dive