| CVE-2024-10711 | WooCommerce Report <= 1.5.1 - Cross-Site Request Forgery to Arbitrary Options Update | ithemelandco | REPORTiT – Advanced Reporting for WooCommerce | High | 8.8 | 2024-11-05 08:31:37 | Deep Dive |
| CVE-2024-51626 | WordPress Woocommerce Quote Calculator plugin <= 1.1 - SQL Injection vulnerability | chenyenming | Woocommerce Quote Calculator | High | 8.5 | 2024-11-04 14:09:51 | Deep Dive |
| CVE-2024-37201 | WordPress Woocommerce Customers Order History plugin <= 5.2.2 - Broken Access Control vulnerability | javmah | Woocommerce Customers Order History | Medium | 4.3 | 2024-11-01 14:18:35 | Deep Dive |
| CVE-2024-37203 | WordPress Laybuy Payment Extension for WooCommerce plugin <= 5.3.9 - Broken Access Control vulnerability | Laybuy | Laybuy Payment Extension for WooCommerce | Medium | 4.3 | 2024-11-01 14:18:35 | Deep Dive |
| CVE-2024-38702 | WordPress Product Delivery Date for WooCommerce – Lite plugin <= 2.7.2 - Broken Access Control vulnerability | Tyche Softwares | Product Delivery Date for WooCommerce – Lite | Medium | 5.3 | 2024-11-01 14:18:08 | Deep Dive |
| CVE-2024-39650 | WordPress WooCommerce PDF Vouchers plugin < 4.9.5 - Unauthenticated Multiple Vulnerabilities | WPWeb Elite | WooCommerce PDF Vouchers | High | 7.3 | 2024-11-01 14:17:52 | Deep Dive |
| CVE-2024-43134 | WordPress Waitlist Woocommerce plugin <= 2.6 - Broken Access Control vulnerability | xootix | Waitlist Woocommerce ( Back in stock notifier ) | Medium | 4.3 | 2024-11-01 14:17:48 | Deep Dive |
| CVE-2024-43219 | WordPress Persian WooCommerce plugin <= 7.1.6 - Broken Access Control vulnerability | ووکامرس فارسی | Persian WooCommerce | Medium | 5.3 | 2024-11-01 14:17:39 | Deep Dive |
| CVE-2024-43310 | WordPress Print Labels with Barcodes. Create price tags, product labels, order labels for WooCommerce plugin <= 3.4.9 - Broken Access Control vulnerability | UkrSolution | Print Barcode Labels for your WooCommerce products/orders | Medium | 6.5 | 2024-11-01 14:17:27 | Deep Dive |
| CVE-2024-43312 | WordPress WPC Frequently Bought Together for WooCommerce plugin <= 7.1.9 - Broken Access Control vulnerability | WPClever | WPC Frequently Bought Together for WooCommerce | Medium | 5.4 | 2024-11-01 14:17:26 | Deep Dive |
| CVE-2024-44006 | WordPress WooCommerce Multilingual & Multicurrency plugin <= 5.3.7 - Broken Access Control vulnerability | Amir Helzer | WooCommerce Multilingual & Multicurrency | Medium | 4.3 | 2024-11-01 14:17:11 | Deep Dive |
| CVE-2024-6479 | SIP Reviews Shortcode for WooCommerce <= 1.2.3 - Authenticated (Contributor+) SQL Injection | shopitpress | SIP Reviews Shortcode for WooCommerce | Medium | 6.5 | 2024-10-31 21:30:39 | Deep Dive |
| CVE-2024-6480 | SIP Reviews Shortcode for WooCommerce <= 1.2.3 - Authenticated (Contributor+) Cross-Site Scripting | shopitpress | SIP Reviews Shortcode for WooCommerce | Medium | 6.4 | 2024-10-31 21:30:38 | Deep Dive |
| CVE-2024-9430 | Get Quote For Woocommerce – Request A Quote For Woocommerce <= 1.0.0 - Missing Authorization to Unauthenticated Quote PDF and CSV Download | wpcloudtechnologies | Get Quote For Woocommerce – Request A Quote For Woocommerce | Medium | 5.3 | 2024-10-31 06:48:55 | Deep Dive |
| CVE-2024-9165 | Gift Cards (Gift Vouchers and Packages) (WooCommerce Supported) <= 4.4.4 - Authenticated (Author+) Stored Cross-Site Scripting via SVG File Upload | codemenschen | Gift Cards (Gift Vouchers and Packages) (WooCommerce Supported) | Medium | 6.4 | 2024-10-31 06:48:54 | Deep Dive |
| CVE-2024-50508 | WordPress Woocommerce Product Design plugin <= 1.0.0 - Arbitrary File Download vulnerability | Chetan Khandla | Woocommerce Product Design | High | 7.5 | 2024-10-30 07:56:47 | Deep Dive |
| CVE-2024-50510 | WordPress AR For Woocommerce plugin <= 6.3 - Arbitrary File Upload vulnerability | webandprint | AR For Woocommerce | Critical | 10.0 | 2024-10-30 07:54:53 | Deep Dive |
| CVE-2024-50509 | WordPress Woocommerce Product Design plugin <= 1.0.0 - Arbitrary File Deletion vulnerability | Chetan Khandla | Woocommerce Product Design | High | 8.6 | 2024-10-30 07:41:05 | Deep Dive |
| CVE-2024-50421 | WordPress PDF Invoices & Packing Slips for WooCommerce plugin <= 3.8.6 - Broken Access Control vulnerability | WP Overnight | WooCommerce PDF Invoices & Packing Slips | Medium | 5.3 | 2024-10-29 21:34:53 | Deep Dive |
| CVE-2024-49640 | WordPress ACL Floating Cart for WooCommerce plugin <= 0.9 - Reflected Cross Site Scripting (XSS) vulnerability | AmaderCode Lab | ACL Floating Cart for WooCommerce | High | 7.1 | 2024-10-29 12:39:19 | Deep Dive |