| CVE-2024-7030 | Smart Online Order for Clover <= 1.5.6 - Missing Authorization to Authenticated (Subscriber+) Plugin Data Update | elbanyaoui | Smart Online Order for Clover | Medium | 4.3 | 2024-08-21 05:30:22 | Deep Dive |
| CVE-2024-7032 | Smart Online Order for Clover <= 1.5.6 - Missing Authorization to Plugin Deactivation and Data Deletion | elbanyaoui | Smart Online Order for Clover | Medium | 6.5 | 2024-08-21 05:30:22 | Deep Dive |
| CVE-2024-43127 | WordPress Products, Order & Customers Export for WooCommerce plugin <= 2.0.11 - Reflected Cross Site Scripting (XSS) vulnerability | WPFactory | Products, Order & Customers Export for WooCommerce | High | 7.1 | 2024-08-12 22:32:18 | Deep Dive |
| CVE-2024-6917 | RCE in Veribilim Software's Veribase Order Management | Veribilim Software | Veribase Order Management | - | - | 2024-08-12 14:51:48 | Deep Dive |
| CVE-2024-6836 | Funnel Builder for WordPress by FunnelKit – Customize WooCommerce Checkout Pages, Create Sales Funnels, Order Bumps & One Click Upsells <= 3.4.6 - Missing Authorization to Authenticated (Contributor+) Settings Update | amans2k | FunnelKit – Funnel Builder for WooCommerce Checkout | Medium | 4.3 | 2024-07-24 05:31:56 | Deep Dive |
| CVE-2024-38708 | WordPress Barcode Scanner and Inventory manager plugin <= 1.6.1 - SQL Injection vulnerability | Dmitry V. (CEO of "UKR Solution") | Barcode Scanner with Inventory & Order Manager | High | 8.5 | 2024-07-22 10:10:50 | Deep Dive |
| CVE-2024-37522 | WordPress CC & BCC for Woocommerce Order Emails plugin <= 1.4.1 - Cross Site Scripting (XSS) vulnerability | Dario Curasì | CC & BCC for Woocommerce Order Emails | Medium | 5.9 | 2024-07-21 07:10:16 | Deep Dive |
| CVE-2024-5641 | One Click Order Re-Order <= 1.1.9 - Missing Authorization to Authenticated (Subscriber+) Stored Cross-Site Scripting | cedcommerce | One Click Order Re-Order | Medium | 6.4 | 2024-07-04 07:32:28 | Deep Dive |
| CVE-2024-5192 | Funnel Builder for WordPress by FunnelKit – Customize WooCommerce Checkout Pages, Create Sales Funnels, Order Bumps & One Click Upsells <= 3.3.1 - Authenticated (Author+) Stored Cross-Site Scripting via SVG Upload | amans2k | FunnelKit – Funnel Builder for WooCommerce Checkout | Medium | 6.4 | 2024-06-29 04:33:28 | Deep Dive |
| CVE-2024-5768 | MIMO Woocommerce Order Tracking <= 1.0.2 - Missing Authorization to Authenticated (Contributor+) Stored Cross-Site Scripting | surakrai | MIMO Woocommerce Order Tracking | Medium | 6.4 | 2024-06-19 03:12:32 | Deep Dive |
| CVE-2024-31276 | WordPress Products, Order & Customers Export for WooCommerce plugin <= 2.0.8 - Broken Access Control vulnerability | WPFactory | Products, Order & Customers Export for WooCommerce | Medium | 5.3 | 2024-06-09 18:14:06 | Deep Dive |
| CVE-2024-33565 | WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.3 - Unauthenticated Broken Access Control vulnerability | UkrSolution | Barcode Scanner with Inventory & Order Manager | Critical | 9.1 | 2024-06-09 12:01:38 | Deep Dive |
| CVE-2024-31098 | WordPress New Order Notification for Woocommerce plugin <= 2.0.2 - Broken Access Control vulnerability | Mr.Ebabi | New Order Notification for Woocommerce | High | 8.1 | 2024-06-09 08:58:36 | Deep Dive |
| CVE-2024-31294 | WordPress WP Sort Order plugin <= 1.3.1 - Broken Access Control vulnerability | Fahad Mahmood | WP Sort Order | Medium | 4.3 | 2024-06-09 08:50:47 | Deep Dive |
| CVE-2024-33567 | WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.3 - Unauthenticated Privilege Escalation vulnerability | UkrSolution | Barcode Scanner with Inventory & Order Manager | Critical | 9.8 | 2024-05-17 08:17:10 | Deep Dive |
| CVE-2024-34751 | WordPress Order Export & Order Import for WooCommerce plugin <= 2.4.9 - PHP Object Injection vulnerability | WebToffee | Order Export & Order Import for WooCommerce | Medium | 4.4 | 2024-05-16 15:47:13 | Deep Dive |
| CVE-2024-34556 | WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Sensitive Data Exposure via Exported File vulnerability | Dmitry V. (CEO of "UKR Solution") | Barcode Scanner with Inventory & Order Manager | Medium | 5.3 | 2024-05-09 12:09:15 | Deep Dive |
| CVE-2024-34557 | WordPress Barcode Scanner with Inventory & Order Manager plugin <= 1.5.4 - Cross Site Request Forgery (CSRF) vulnerability | Dmitry V. (CEO of "UKR Solution") | Barcode Scanner with Inventory & Order Manager | Medium | 4.3 | 2024-05-09 11:40:40 | Deep Dive |
| CVE-2024-1679 | Print Labels with Barcodes. Create price tags, product labels, order labels for WooCommerce <= 3.4.6 - Authenticated(Subscriber+) Stored Cross-Site Scripting via Templates | ukrsolution | Print Labels with Barcodes. Create price tags, product labels, order labels for WooCommerce | Medium | 6.4 | 2024-05-02 16:52:35 | Deep Dive |
| CVE-2024-1677 | Print Labels with Barcodes. Create price tags, product labels, order labels for WooCommerce <= 3.4.6 - Improper Authorization | ukrsolution | Print Labels with Barcodes. Create price tags, product labels, order labels for WooCommerce | Medium | 6.3 | 2024-05-02 16:52:14 | Deep Dive |