| CVE ID | Title | Vendor | Product | Severity | CVSS Score | Published At | AI Analysis |
|---|---|---|---|---|---|---|---|
| CVE-2026-3231 | Checkout Field Editor (Checkout Manager) for WooCommerce <= 2.1.7 - Unauthenticated Stored Cross-Site Scripting via Block Checkout Custom Radio Field | themehigh | Checkout Field Editor (Checkout Manager) for WooCommerce | High | 7.2 | 2026-03-11 09:25:45 | Deep Dive |
| CVE-2025-13930 | Checkout Field Manager (Checkout Manager) for WooCommerce <= 7.8.5 - Missing Authorization to Unauthenticated Arbitrary Attachment Deletion | quadlayers | Checkout Field Manager (Checkout Manager) for WooCommerce | Medium | 5.3 | 2026-02-19 04:36:09 | Deep Dive |
| CVE-2025-12500 | Checkout Field Manager (Checkout Manager) for WooCommerce <= 7.8.1 - Unauthenticated Limited File Upload | quadlayers | Checkout Field Manager (Checkout Manager) for WooCommerce | Medium | 5.3 | 2026-02-19 03:25:20 | Deep Dive |
| CVE-2024-8499 | Checkout Field Editor (Checkout Manager) for WooCommerce <= 2.0.3 - Reflected Cross-Site Scripting via render_review_request_notice | themehigh | Checkout Field Editor (Checkout Manager) for WooCommerce | Medium | 4.7 | 2024-10-04 12:46:53 | Deep Dive |
| CVE-2024-31262 | WordPress WooCommerce Checkout Field Editor (Checkout Manager) plugin <= 2.1.8 - Cross Site Request Forgery (CSRF) vulnerability | Jcodex | WooCommerce Checkout Field Editor (Checkout Manager) | Medium | 5.4 | 2024-04-12 12:49:48 | Deep Dive |
| CVE-2022-4328 | WooCommerce Checkout Field Manager < 18.0 - Unauthenticated Arbitrary File Upload | Unknown | WooCommerce Checkout Field Manager | 超危 | - | 2023-03-06 13:34:04 | Deep Dive |
| CVE-2022-3490 | Checkout Field Editor for WooCommerce < 1.8.0 - Admin+ PHP Object Injection | Unknown | Checkout Field Editor (Checkout Manager) for WooCommerce | 高危 | - | 2022-11-28 13:47:16 | Deep Dive |