| CVE-2025-31580 | WordPress Ni WooCommerce Product Enquiry plugin <= 4.1.8 - Broken Access Control vulnerability | Anzar Ahmed | Ni WooCommerce Product Enquiry | High | 7.5 | 2025-04-01 20:58:14 | Deep Dive |
| CVE-2025-31553 | WordPress Advanced WooCommerce Product Sales Reporting plugin <= 4.1.1 - SQL Injection vulnerability | WPFactory | Advanced WooCommerce Product Sales Reporting | Critical | 9.3 | 2025-04-01 20:58:13 | Deep Dive |
| CVE-2025-31089 | WordPress Order Splitter for WooCommerce plugin <= 5.3.0 - SQL Injection Vulnerability | Fahad Mahmood | Order Splitter for WooCommerce | High | 8.5 | 2025-04-01 20:58:10 | Deep Dive |
| CVE-2025-30906 | WordPress Plugin Oficial – Getnet para WooCommerce plugin <= 1.7.3 - Reflected Cross Site Scripting (XSS) vulnerability | lisandragetnet | Plugin Oficial – Getnet para WooCommerce | High | 7.1 | 2025-04-01 20:58:08 | Deep Dive |
| CVE-2025-30825 | WordPress WPC Smart Linked Products plugin <= 1.3.5 - Privilege Escalation vulnerability | WPClever | WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce | High | 8.8 | 2025-04-01 20:58:07 | Deep Dive |
| CVE-2025-30807 | WordPress Next-Cart Store to WooCommerce Migration plugin <= 3.9.4 - SQL Injection vulnerability | Martin Nguyen | Next-Cart Store to WooCommerce Migration | Critical | 9.3 | 2025-04-01 20:58:07 | Deep Dive |
| CVE-2025-31879 | WordPress Barcode Generator for WooCommerce plugin <= 2.0.4 - Settings Change vulnerability | Dmitry V. (CEO of "UKR Solution") | Barcode Generator for WooCommerce | Medium | 5.4 | 2025-04-01 14:52:15 | Deep Dive |
| CVE-2025-31866 | WordPress ShipDepot for WooCommerce plugin <= 1.2.19 - Broken Access Control vulnerability | Ship Depot | ShipDepot for WooCommerce | Medium | 4.3 | 2025-04-01 14:52:09 | Deep Dive |
| CVE-2025-31854 | WordPress Simple Sticky Add To Cart For WooCommerce plugin <= 1.4.9 - Broken Access Control vulnerability | Sharaz Shahid | Simple Sticky Add To Cart For WooCommerce | Medium | 4.3 | 2025-04-01 14:52:02 | Deep Dive |
| CVE-2025-31843 | WordPress OpenAI Tools for WordPress & WooCommerce plugin <= 2.2.1 - Broken Access Control vulnerability | Wilson | OpenAI Tools for WordPress & WooCommerce | Medium | 4.3 | 2025-04-01 14:51:56 | Deep Dive |
| CVE-2025-31826 | WordPress Ni WooCommerce Cost Of Goods plugin <= 3.2.8 - Broken Access Control vulnerability | Anzar Ahmed | Ni WooCommerce Cost Of Goods | Medium | 5.4 | 2025-04-01 14:51:48 | Deep Dive |
| CVE-2025-31807 | WordPress Product Notices for WooCommerce plugin <= 1.3.4 - Cross Site Request Forgery (CSRF) vulnerability | CloudRedux | Product Notices for WooCommerce | Medium | 4.3 | 2025-04-01 14:51:38 | Deep Dive |
| CVE-2025-31802 | WordPress Shiptimize for WooCommerce plugin <= 3.1.86 - Settings Change vulnerability | Shiptimize | Shiptimize for WooCommerce | Medium | 5.4 | 2025-04-01 14:51:35 | Deep Dive |
| CVE-2025-31781 | WordPress Gift Cards for WooCommerce plugin <= 1.5.8 - Broken Access Control vulnerability | ahmadshyk | Gift Cards for WooCommerce | Medium | 4.3 | 2025-04-01 14:51:25 | Deep Dive |
| CVE-2025-31757 | WordPress Free Woocommerce Product Table View plugin <= 1.78 - Broken Access Control vulnerability | BinaryCarpenter | Free Woocommerce Product Table View | Medium | 5.4 | 2025-04-01 14:51:14 | Deep Dive |
| CVE-2024-13553 | SMS Alert Order Notifications – WooCommerce <= 3.7.9 - Unauthenticated Account Takeover/Privilege Escalation | cozyvision1 | SMS Alert – SMS & OTP for WooCommerce, Order Notifications & Abandoned Cart Recovery | Critical | 9.8 | 2025-04-01 11:12:29 | Deep Dive |
| CVE-2024-12278 | Booster for WooCommerce <= 7.2.4 - Unauthenticated Stored Cross-Site Scripting | pluggabl | Booster for WooCommerce – PDF Invoices, Abandoned Cart, Variation Swatches & 100+ Tools | High | 7.2 | 2025-04-01 06:52:04 | Deep Dive |
| CVE-2025-31087 | WordPress Multiple Shipping And Billing Address For Woocommerce plugin <= 1.5 - PHP Object Injection Vulnerability | silverplugins217 | Multiple Shipping And Billing Address For Woocommerce | Critical | 9.8 | 2025-04-01 05:31:42 | Deep Dive |
| CVE-2025-30917 | WordPress SKU Generator for WooCommerce plugin <= 1.6.2 - Reflected Cross Site Scripting (XSS) Vulnerability | WP Wham | SKU Generator for WooCommerce | High | 7.1 | 2025-04-01 05:31:41 | Deep Dive |
| CVE-2025-30924 | WordPress Primer MyData for Woocommerce plugin < 4.2.4 - Reflected Cross Site Scripting (XSS) vulnerability | primersoftware | Primer MyData for Woocommerce | High | 7.1 | 2025-04-01 05:31:41 | Deep Dive |