All 2 CVE vulnerabilities found in Cart All In One For WooCommerce, with AI-generated Chinese analysis, references, and POCs.
Vendor: VillaTheme
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-2019 | Cart All In One For WooCommerce <= 1.1.21 - Authenticated (Administrator+) Code Injection via 'sc_assign_page' Setting CWE-74 | 7.2 | High | 2026-02-18 |
| CVE-2022-46806 | WordPress Cart All In One For WooCommerce Plugin <= 1.1.10 is vulnerable to Cross Site Request Forgery (CSRF) CWE-352 | 5.4 | Medium | 2023-03-01 |
All 2 known CVE vulnerabilities affecting Cart All In One For WooCommerce with full Chinese analysis, references, and POCs where available.