| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2021-25068 | Sync WooCommerce Product feed to Google Shopping <= 1.2.4 - Admin+ SQLi | Unknown | Sync WooCommerce Product feed to Google Shopping | 高危 | - | 2022-03-28 17:21:55 | Deep Dive |
| CVE-2022-0478 | Event Manager for WooCommerce < 3.5.8 - Contributor+ SQL Injection | Unknown | Event Manager and Tickets Selling Plugin for WooCommerce | 高危 | - | 2022-03-14 14:41:34 | Deep Dive |
| CVE-2022-0399 | Advanced Product Labels for WooCommerce < 1.2.3.7 - Reflected Cross-Site Scripting | Unknown | Advanced Product Labels for WooCommerce | 中危 | - | 2022-03-14 14:41:31 | Deep Dive |
| CVE-2022-0426 | Product Feed PRO for WooCommerce < 11.2.3 - Reflected Cross-Site Scripting | Unknown | Product Feed PRO for WooCommerce | 中危 | - | 2022-03-07 08:16:36 | Deep Dive |
| CVE-2022-0349 | NotificationX < 2.3.9 - Unauthenticated Blind SQL Injection | Unknown | NotificationX – Best FOMO, Social Proof, WooCommerce Sales Popup & Notification Bar Plugin With Elementor | 超危 | - | 2022-03-07 08:16:27 | Deep Dive |
| CVE-2021-24952 | Conversios.io < 4.6.2 - Subscriber+ SQL Injection | Unknown | Conversios.io – Google Analytics and Google Shopping plugin for WooCommerce | 高危 | - | 2022-03-07 08:16:08 | Deep Dive |
| CVE-2022-0412 | TI WooCommerce Wishlist < 1.40.1 - Unauthenticated Blind SQL Injection | TemplateInvaders | TI WooCommerce Wishlist | 超危 | - | 2022-02-28 09:06:56 | Deep Dive |
| CVE-2022-0234 | WOOCS < 1.3.7.5 - Reflected Cross-Site Scripting | Unknown | WOOCS – Currency Switcher for WooCommerce. Professional and Free multi currency plugin – Pay in selected currency | 中危 | - | 2022-02-21 10:46:08 | Deep Dive |
| CVE-2021-4208 | ExportFeed <= 2.0.1.0 - Admin+ SQL Injection | Unknown | ExportFeed: List WooCommerce Products on eBay Store | 高危 | - | 2022-02-21 10:45:57 | Deep Dive |
| CVE-2021-24867 | Backdoored Plugins & Themes from AccessPress Themes | AccessPress Themes | Frontend Post WordPress Plugin – AccessPress Anonymous Post | 超危 | - | 2022-02-21 10:45:39 | Deep Dive |
| CVE-2022-23982 | WordPress Perfect Brands for WooCommerce plugin <= 2.0.4 - Server Information Exposure vulnerability | QuadLayers | Perfect Brands for WooCommerce (WordPress plugin) | Medium | 4.3 | 2022-02-18 17:50:15 | Deep Dive |
| CVE-2022-23981 | WordPress Perfect Brands for WooCommerce plugin <= 2.0.4 - Set Featured Brand vulnerability | QuadLayers | Perfect Brands for WooCommerce (WordPress plugin) | Medium | 4.3 | 2022-02-18 17:50:14 | Deep Dive |
| CVE-2021-25018 | PPOM for WooCommerce < 24.0 - Subscriber+ Settings Update to Stored XSS | Unknown | PPOM for WooCommerce | 中危 | - | 2022-02-14 09:20:43 | Deep Dive |
| CVE-2022-0149 | WooCommerce – Store Exporter < 2.7.1 - Reflected Cross-Site Scripting (XSS) | Unknown | WooCommerce – Store Exporter | 中危 | - | 2022-02-07 15:47:26 | Deep Dive |
| CVE-2021-25077 | Store Toolkit for WooCommerce < 2.3.2 - Reflected Cross-Site Scripting | Unknown | Store Toolkit for WooCommerce | 中危 | - | 2022-02-07 15:47:17 | Deep Dive |
| CVE-2021-24928 | Rearrange Woocommerce Products < 3.0.8 - Subscriber+ SQL Injection | Unknown | Rearrange Woocommerce Products | 中危 | - | 2022-02-07 15:47:13 | Deep Dive |
| CVE-2021-25085 | WOOF - Products Filter for WooCommerce < 1.2.6.3 - Reflected Cross-Site Scripting | Unknown | WOOF – Products Filter for WooCommerce | 中危 | - | 2022-02-01 12:21:36 | Deep Dive |
| CVE-2021-25062 | Orders Tracking for WooCommerce < 1.1.10 - Reflected Cross-Site Scripting | Unknown | Orders Tracking for WooCommerce | 中危 | - | 2022-01-24 08:01:20 | Deep Dive |
| CVE-2021-24974 | Product Feed PRO for WooCommerce < 11.0.7 - Subscriber+ Settings Update to Stored XSS | Unknown | Product Feed PRO for WooCommerce | 中危 | - | 2022-01-24 08:01:00 | Deep Dive |
| CVE-2022-0215 | XootiX Plugins <= Various Versions Cross-Site Request Forgery to Arbitrary Options Update | XootiX | Login/Signup Popup | High | 8.8 | 2022-01-18 16:52:32 | Deep Dive |