Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee
Vulnerability List
Clear Filters
Found 185 results
CVE IDTitleVendorProductSeverityCVSS ScorePublished AtAI Analysis
CVE-2023-2891 WP EasyCart <= 5.4.8 - Cross-Site Request Forgery via process_delete_product levelfourstorefrontShopping Cart & eCommerce Store Medium 6.5 2023-06-09 05:33:31 Deep Dive
CVE-2023-24408 WordPress Ecwid Shopping Cart Plugin <= 6.11.4 is vulnerable to Cross Site Scripting (XSS) Ecwid EcommerceEcwid Ecommerce Shopping Cart Medium 6.5 2023-05-08 14:36:18 Deep Dive
CVE-2023-25049 WordPress eCommerce Product Catalog Plugin <= 3.3.4 is vulnerable to Cross Site Scripting (XSS) impleCodeeCommerce Product Catalog Plugin for WordPress Medium 5.9 2023-04-07 11:12:17 Deep Dive
CVE-2023-1124 Shopping Cart & eCommerce Store < 5.4.3 - Admin+ LFI UnknownShopping Cart & eCommerce Store 高危 -2023-04-03 14:38:27 Deep Dive
CVE-2022-47444 WordPress ProfilePress Plugin <= 4.4.1 is vulnerable to Cross Site Scripting (XSS) ProfilePress Membership TeamPaid Membership Plugin, Ecommerce, Registration Form, Login Form, User Profile & Restrict Content – ProfilePress High 7.1 2023-03-29 12:35:45 Deep Dive
CVE-2023-1470 eCommerce Product Catalog plugin for WordPress <= 3.3.8 - Authenticated (Administrator+) Stored Cross-Site Scripting implecodeeCommerce Product Catalog Plugin for WordPress Medium 4.4 2023-03-17 13:13:15 Deep Dive
CVE-2023-24377 WordPress Ecwid Shopping Cart Plugin <= 6.11.3 is vulnerable to Cross Site Request Forgery (CSRF) Ecwid EcommerceEcwid Ecommerce Shopping Cart Medium 4.3 2023-02-14 11:18:14 Deep Dive
CVE-2022-4697 ProfilePress <= 4.5.0 - Authenticated (Administrator+) Stored Cross-Site Scripting properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 5.5 2022-12-23 15:11:46 Deep Dive
CVE-2022-4698 ProfilePress <= 4.5.0 - Authenticated (Administrator+) Stored Cross-Site Scripting via Form Settings properfractionPaid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress Medium 5.5 2022-12-23 15:09:51 Deep Dive
CVE-2022-2387 Easy Digital Downloads < 3.0 - Arbitrary Post Deletion via CSRF UnknownEasy Digital Downloads – Simple eCommerce for Selling Digital Files 中危 -2022-11-07 00:00:00 Deep Dive
CVE-2022-2432 Ecwid Ecommerce Shopping Cart <= 6.10.23 - Cross-Site Request Forgery to Settings/Options Update ecwidEcwid Ecommerce Shopping Cart High 8.8 2022-09-06 17:18:56 Deep Dive
CVE-2022-23063 Shopizer - Insufficient Session Expiration shopizer-ecommerceShopizer High 8.8 2022-05-03 08:55:10 Deep Dive
CVE-2022-23065 Vendure - XSS via SVG File Upload vendure-ecommercevendure Medium 5.4 2022-05-02 12:30:16 Deep Dive
CVE-2022-23061 Shopizer - IDOR delete superadmin shopizer-ecommerceShopizer Medium 6.5 2022-05-01 12:40:12 Deep Dive
CVE-2022-23060 Shopizer - Stored XSS in Manage Files shopizer-ecommerceShopizer Medium 4.8 2022-05-01 12:40:10 Deep Dive
CVE-2022-0707 Easy Digital Downloads < 2.11.6 - Arbitrary Payment Note Insertion via CSRF UnknownEasy Digital Downloads – Simple eCommerce for Selling Digital Files 中危 -2022-04-18 17:10:31 Deep Dive
CVE-2022-0706 Easy Digital Downloads < 2.11.6 - Admin+ Stored Cross-Site Scripting UnknownEasy Digital Downloads – Simple eCommerce for Selling Digital Files 中危 -2022-04-18 17:10:29 Deep Dive
CVE-2022-23059 Shopizer - Stored XSS in Manage Images shopizer-ecommerceShopizer Medium 4.8 2022-03-29 10:25:09 Deep Dive
CVE-2021-24875 eCommerce Product Catalog for WordPress < 3.0.39 - Reflected Cross-Site Scripting UnknowneCommerce Product Catalog Plugin for WordPress 中危 -2021-11-23 19:16:16 Deep Dive
CVE-2021-24402 WP iCommerce <= 1.1.1 - Authenticated (contributor+) SQL Injection UnknownWP iCommerce – the first interactive ecommerce for wordpress 高危 -2021-09-20 10:06:08 Deep Dive