| CVE-2023-47509 | WordPress Edit WooCommerce Templates Plugin <= 1.1.1 is vulnerable to Cross Site Scripting (XSS) | ioannup | Edit WooCommerce Templates | High | 7.1 | 2023-11-16 18:20:57 | Deep Dive |
| CVE-2023-47512 | WordPress Product Enquiry for WooCommerce Plugin <= 3.0 is vulnerable to Cross Site Scripting (XSS) | Gravity Master | Product Enquiry for WooCommerce | High | 7.1 | 2023-11-16 18:11:51 | Deep Dive |
| CVE-2023-47514 | WordPress Star CloudPRNT for WooCommerce Plugin <= 2.0.3 is vulnerable to Cross Site Scripting (XSS) | lawrenceowen, gcubero, acunnningham, fmahmood | Star CloudPRNT for WooCommerce | High | 7.1 | 2023-11-16 18:07:27 | Deep Dive |
| CVE-2023-47533 | WordPress Countdown and CountUp, WooCommerce Sales Timer Plugin <= 1.8.2 is vulnerable to Cross Site Scripting (XSS) | wpdevart | Countdown and CountUp, WooCommerce Sales Timer | Medium | 5.9 | 2023-11-14 21:06:44 | Deep Dive |
| CVE-2023-47547 | WordPress Products, Order & Customers Export for WooCommerce Plugin <= 2.0.7 is vulnerable to Cross Site Scripting (XSS) | WPFactory | Products, Order & Customers Export for WooCommerce | High | 7.1 | 2023-11-14 20:45:10 | Deep Dive |
| CVE-2023-47653 | WordPress TWB Woocommerce Reviews Plugin <= 1.7.5 is vulnerable to Cross Site Scripting (XSS) | Abu Bakar | TWB Woocommerce Reviews | Medium | 5.9 | 2023-11-14 18:53:19 | Deep Dive |
| CVE-2023-47658 | WordPress Extra Product Options for WooCommerce Plugin <= 3.0.3 is vulnerable to Cross Site Scripting (XSS) | actpro | Extra Product Options for WooCommerce | Medium | 5.9 | 2023-11-14 18:40:11 | Deep Dive |
| CVE-2023-47660 | WordPress Product Visibility by Country for WooCommerce Plugin <= 1.4.9 is vulnerable to Cross Site Scripting (XSS) | WP Wham | Product Visibility by Country for WooCommerce | Medium | 5.9 | 2023-11-14 17:06:57 | Deep Dive |
| CVE-2023-47657 | WordPress Direct Checkout – Quick View – Buy Now For WooCommerce Plugin <= 1.5.8 is vulnerable to Cross Site Scripting (XSS) | GrandPlugins | Direct Checkout – Quick View – Buy Now For WooCommerce | Medium | 5.9 | 2023-11-13 23:43:02 | Deep Dive |
| CVE-2023-47690 | WordPress Additional Order Filters for WooCommerce Plugin <= 1.10 is vulnerable to Cross Site Scripting (XSS) | Anton Bond | Additional Order Filters for WooCommerce | High | 7.1 | 2023-11-13 23:03:33 | Deep Dive |
| CVE-2023-47696 | WordPress Product Enquiry for WooCommerce Plugin <= 3.0 is vulnerable to Cross Site Scripting (XSS) | Gravity Master | Product Enquiry for WooCommerce | High | 7.1 | 2023-11-13 22:33:20 | Deep Dive |
| CVE-2023-4603 | Star CloudPRNT for WooCommerce <= 2.0.3 - Reflected Cross-Site Scripting | fmahmood | Star CloudPRNT for WooCommerce | Medium | 6.1 | 2023-11-13 22:32:15 | Deep Dive |
| CVE-2023-47697 | WordPress WP Event Manager Plugin <= 3.1.39 is vulnerable to Cross Site Scripting (XSS) | WP Event Manager | WP Event Manager – Events Calendar, Registrations, Sell Tickets with WooCommerce | High | 7.1 | 2023-11-13 22:28:41 | Deep Dive |
| CVE-2023-46634 | WordPress Custom My Account for Woocommerce Plugin <= 2.1 is vulnerable to Cross Site Request Forgery (CSRF) | phoeniixx | Custom My Account for Woocommerce | High | 7.1 | 2023-11-13 04:02:30 | Deep Dive |
| CVE-2023-46629 | WordPress Remove Add to Cart WooCommerce Plugin <= 1.4.4 is vulnerable to Cross Site Request Forgery (CSRF) | themelocation | Remove Add to Cart WooCommerce | Medium | 4.3 | 2023-11-13 00:24:02 | Deep Dive |
| CVE-2023-32744 | WordPress WooCommerce Product Recommendations plugin < 2.3.0 - Cross Site Request Forgery (CSRF) vulnerability | Woo | WooCommerce Product Recommendations | Medium | 5.4 | 2023-11-09 20:53:05 | Deep Dive |
| CVE-2023-32794 | WordPress WooCommerce Product Add-ons plugin <= 6.1.3 - Cross Site Request Forgery (CSRF) vulnerability | Woo | WooCommerce Product Add-ons | Medium | 5.4 | 2023-11-09 20:35:33 | Deep Dive |
| CVE-2023-34386 | WordPress WPC Smart Wishlist for WooCommerce plugin <= 4.7.1 - Cross Site Request Forgery (CSRF) vulnerability | WPClever | WPC Smart Wishlist for WooCommerce | Medium | 4.3 | 2023-11-09 18:00:48 | Deep Dive |
| CVE-2022-46802 | WordPress Product Reviews Import Export for WooCommerce plugin <= 1.4.8 - Unauth. CSV Injection vulnerability | WebToffee | Product Reviews Import Export for WooCommerce | Medium | 6.1 | 2023-11-07 16:07:32 | Deep Dive |
| CVE-2023-5703 | Gift Up Gift Cards for WordPress and WooCommerce <= 2.20.1 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode | koanleeroy | Gift Up Gift Cards for WordPress and WooCommerce | Medium | 6.4 | 2023-11-07 11:31:07 | Deep Dive |