| CVE-2024-54235 | WordPress Shiptimize for WooCommerce plugin <= 3.1.86 - Reflected Cross Site Scripting (XSS) vulnerability | Shiptimize | Shiptimize for WooCommerce | High | 7.1 | 2024-12-13 14:24:29 | Deep Dive |
| CVE-2024-54231 | WordPress Ni WooCommerce Order Export plugin <= 3.1.6 - Reflected Cross Site Scripting (XSS) vulnerability | Anzar Ahmed | Ni WooCommerce Order Export | High | 7.1 | 2024-12-13 14:24:28 | Deep Dive |
| CVE-2023-44149 | WordPress Brands for WooCommerce plugin <= 3.8.2.2 - Broken Access Control vulnerability | BeRocket | Brands for WooCommerce | 中危 | - | 2024-12-13 14:24:27 | Deep Dive |
| CVE-2023-41803 | WordPress BitPay Checkout for WooCommerce plugin <= 4.1.0 - Broken Access Control vulnerability | BitPay | BitPay Checkout for WooCommerce | Medium | 5.3 | 2024-12-13 14:24:18 | Deep Dive |
| CVE-2023-41686 | WordPress Woocommerce Support System plugin <= 1.2.2 - Cross Site Request Forgery (CSRF) vulnerability | ilGhera | Woocommerce Support System | Medium | 6.5 | 2024-12-13 14:24:13 | Deep Dive |
| CVE-2023-41671 | WordPress Abandoned Cart Lite for WooCommerce plugin <= 5.16.1 - Cross Site Request Forgery (CSRF) vulnerability | tychesoftwares | Abandoned Cart Lite for WooCommerce | 中危 | - | 2024-12-13 14:24:12 | Deep Dive |
| CVE-2023-41132 | WordPress Category Slider for WooCommerce plugin <= 1.4.15 - Broken Access Control vulnerability | ShapedPlugin LLC | Category Slider for WooCommerce | Medium | 4.3 | 2024-12-13 14:24:10 | Deep Dive |
| CVE-2023-37989 | WordPress Easyship WooCommerce Shipping Rates plugin <= 0.9.0 - Broken Access Control vulnerability | Easyship | Easyship WooCommerce Shipping Rates | Medium | 5.4 | 2024-12-13 14:23:53 | Deep Dive |
| CVE-2023-37969 | WordPress Checkout with Zelle on Woocommerce plugin <= 3.1 - Broken Access Control vulnerability | The African Boss | Checkout with Zelle on Woocommerce | Medium | 5.3 | 2024-12-13 14:23:51 | Deep Dive |
| CVE-2023-37971 | WordPress WooCommerce Product Stock Alert plugin <= 2.0.1 - Broken Access Control vulnerability | MultiVendorX | WooCommerce Product Stock Alert | Medium | 6.5 | 2024-12-13 14:23:51 | Deep Dive |
| CVE-2023-36506 | WordPress YITH WooCommerce Waitlist plugin <= 2.13.0 - Broken Access Control vulnerability | YITH | YITH WooCommerce Waiting List | Medium | 5.3 | 2024-12-13 14:23:42 | Deep Dive |
| CVE-2023-34376 | WordPress Change WooCommerce Add To Cart Button Text plugin <= 1.3 - Broken Access Control vulnerability | Rextheme | Change WooCommerce Add To Cart Button Text | Medium | 5.4 | 2024-12-13 14:23:37 | Deep Dive |
| CVE-2023-32963 | WordPress Predictive Search for WooCommerce plugin <= 5.8.0 - Broken Access Control vulnerability | a3rev Software | WooCommerce Predictive Search | Medium | 5.3 | 2024-12-13 14:23:28 | Deep Dive |
| CVE-2022-47182 | WordPress APIExperts Square for WooCommerce plugin <= 4.4.1 - Broken Access Control | Wpexpertsio | APIExperts Square for WooCommerce | Medium | 5.3 | 2024-12-13 14:22:11 | Deep Dive |
| CVE-2022-47168 | WordPress Printful Integration for WooCommerce plugin <= 2.2.3 - Cross Site Request Forgery (CSRF) | printful | Printful Integration for WooCommerce | - | - | 2024-12-13 14:22:10 | Deep Dive |
| CVE-2022-46811 | WordPress ALD Dropshipping and Fulfillment for AliExpress and WooCommerce plugin <= 1.0.21 - Broken Access Control + CSRF | VillaTheme(villatheme.com) | ALD – Dropshipping and Fulfillment for AliExpress and WooCommerce | Medium | 4.3 | 2024-12-13 14:22:08 | Deep Dive |
| CVE-2022-46807 | WordPress Stock Sync for WooCommerce plugin <= 2.3.2 - Broken Access Control | Lauri Karisola / WP Trio | Stock Sync for WooCommerce | Medium | 4.3 | 2024-12-13 14:22:07 | Deep Dive |
| CVE-2022-46795 | WordPress Print Invoice & Delivery Notes for WooCommerce plugin <= 4.7.2 - CSRF Plugin Settings Reset vulnerability | Tyche Softwares | Print Invoice & Delivery Notes for WooCommerce | Medium | 6.5 | 2024-12-13 14:22:06 | Deep Dive |
| CVE-2024-12421 | Coupon Affiliates – Affiliate Plugin for WooCommerce <= 5.16.7.1 - Unauthenticated Arbitrary Shortcode Execution and Reflected Cross-Site Scripting | elliotvs | Coupon Affiliates – Affiliate Plugin for WooCommerce | Medium | 6.5 | 2024-12-13 08:24:49 | Deep Dive |
| CVE-2024-11809 | Primer MyData for Woocommerce <= 4.2.1 - Reflected Cross-Site Scripting | primersoftware | Primer MyData for Woocommerce | Medium | 6.1 | 2024-12-13 04:23:27 | Deep Dive |