| CVE-2023-47687 | WordPress Woo Custom and Sequential Order Number Plugin <= 2.6.0 is vulnerable to Cross Site Request Forgery (CSRF) | VJInfotech | Woo Custom and Sequential Order Number | Medium | 4.3 | 2023-11-16 22:09:03 | Deep Dive |
| CVE-2023-47546 | WordPress OneClick Chat to Order Plugin <= 1.0.4.2 is vulnerable to Cross Site Scripting (XSS) | Walter Pinem | OneClick Chat to Order | Medium | 5.9 | 2023-11-14 20:50:27 | Deep Dive |
| CVE-2023-47547 | WordPress Products, Order & Customers Export for WooCommerce Plugin <= 2.0.7 is vulnerable to Cross Site Scripting (XSS) | WPFactory | Products, Order & Customers Export for WooCommerce | High | 7.1 | 2023-11-14 20:45:10 | Deep Dive |
| CVE-2023-47690 | WordPress Additional Order Filters for WooCommerce Plugin <= 1.10 is vulnerable to Cross Site Scripting (XSS) | Anton Bond | Additional Order Filters for WooCommerce | High | 7.1 | 2023-11-13 23:03:33 | Deep Dive |
| CVE-2023-32508 | WordPress Order Your Posts Manually Plugin <= 2.2.5 is vulnerable to SQL Injection | Rolf van Gelder | Order Your Posts Manually | 高危 | - | 2023-11-03 16:18:56 | Deep Dive |
| CVE-2023-46312 | WordPress Smart Online Order for Clover Plugin <= 1.5.4 is vulnerable to Cross Site Scripting (XSS) | Zaytech | Smart Online Order for Clover | High | 7.1 | 2023-10-31 09:16:23 | Deep Dive |
| CVE-2023-45072 | WordPress Order auto complete for WooCommerce Plugin <= 1.2.0 is vulnerable to Cross Site Scripting (XSS) | Kardi | Order auto complete for WooCommerce | Medium | 5.9 | 2023-10-18 12:43:01 | Deep Dive |
| CVE-2023-22088 | Oracle Communications Applications 安全漏洞 | Oracle Corporation | Communications Order and Service Management | Medium | 4.3 | 2023-10-17 21:03:00 | Deep Dive |
| CVE-2023-45006 | WordPress WooODT Lite Plugin <= 2.4.6 is vulnerable to Cross Site Scripting (XSS) | ByConsole | WooODT Lite – WooCommerce Order Delivery or Pickup with Date Time Location | High | 7.1 | 2023-10-17 11:24:12 | Deep Dive |
| CVE-2023-41858 | WordPress Order Delivery Date for WP e-Commerce Plugin <= 1.2 is vulnerable to Cross Site Request Forgery (CSRF) | Ashok Rane | Order Delivery Date for WP e-Commerce | Medium | 4.3 | 2023-10-10 08:50:47 | Deep Dive |
| CVE-2023-41859 | WordPress Order Delivery Date for WP e-Commerce Plugin <= 1.2 is vulnerable to Cross Site Scripting (XSS) | Ashok Rane | Order Delivery Date for WP e-Commerce | Medium | 5.9 | 2023-10-02 08:49:27 | Deep Dive |
| CVE-2023-41874 | WordPress Order Delivery Date for WooCommerce Plugin <= 3.20.0 is vulnerable to Cross Site Scripting (XSS) | Tyche Softwares | Order Delivery Date for WooCommerce | High | 7.1 | 2023-09-25 00:43:00 | Deep Dive |
| CVE-2023-4471 | Order Tracking Pro <= 3.3.6 - Reflected Cross-Site Scripting | rustaurius | Order Tracking – WordPress Status Tracking Plugin | Medium | 6.1 | 2023-08-31 05:33:15 | Deep Dive |
| CVE-2023-4500 | Order Tracking Pro <= 3.3.6 - Authenticated (Administrator+) Stored Cross-Site Scripting | rustaurius | Order Tracking – WordPress Status Tracking Plugin | Medium | 4.7 | 2023-08-31 05:33:12 | Deep Dive |
| CVE-2023-34184 | WordPress Woocommerce Order address Print Plugin <= 3.2 is vulnerable to Cross Site Scripting (XSS) | Bhavik Patel | Woocommerce Order address Print | High | 7.1 | 2023-08-30 13:28:58 | Deep Dive |
| CVE-2023-32510 | WordPress Order Your Posts Manually Plugin <= 2.2.5 is vulnerable to Cross Site Scripting (XSS) | Rolf van Gelder | Order Your Posts Manually | High | 7.1 | 2023-08-24 11:10:59 | Deep Dive |
| CVE-2023-32509 | WordPress Order Your Posts Manually Plugin <= 2.2.5 is vulnerable to Cross Site Scripting (XSS) | Rolf van Gelder | Order Your Posts Manually | High | 7.1 | 2023-08-23 14:27:50 | Deep Dive |
| CVE-2022-4888 | Multiple Plugins from Addify - Multiple CSRF | Unknown | Checkout Fields Manager | 中危 | - | 2023-07-31 09:37:33 | Deep Dive |
| CVE-2023-36511 | WordPress WooCommerce Order Barcodes Plugin <= 1.6.4 is vulnerable to Cross Site Request Forgery (CSRF) | WooCommerce | WooCommerce Order Barcodes | Medium | 4.3 | 2023-07-17 14:19:39 | Deep Dive |
| CVE-2023-29423 | WordPress Cancel order request WooCommerce Plugin <= 1.3.2 is vulnerable to Cross Site Scripting (XSS) | PI Websolution | Cancel order request / Return order / Repeat Order / Reorder for WooCommerce | Medium | 5.9 | 2023-06-26 07:13:12 | Deep Dive |