Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

MultiVendorX – WooCommerce Multivendor Marketplace Solutions — Vulnerabilities & Security Advisories 8

All 8 CVE vulnerabilities found in MultiVendorX – WooCommerce Multivendor Marketplace Solutions, with AI-generated Chinese analysis, references, and POCs.

Vendor: wcmp

CVE IDTitleCVSSSeverityPublished
CVE-2025-4101 MultiVendorX – WooCommerce Multivendor Marketplace Solutions <= 4.2.22 - Incorrect Authorization to Authenticated (Contributor+) Arbitrary Post Deletion CWE-863 4.3 Medium2025-05-17
CVE-2025-2789 MultiVendorX – The Ultimate WooCommerce Multivendor Marketplace Solution <= 4.2.19 - Missing Authorization to Unauthenticated Table Rates Deletion CWE-862 5.3 Medium2025-04-05
CVE-2025-0493 MultiVendorX – The Ultimate WooCommerce Multivendor Marketplace Solution <= 4.2.14 - Unauthenticated Limited Local File Inclusion CWE-22 9.8 Critical2025-01-31
CVE-2024-9943 MultiVendorX – The Ultimate WooCommerce Multivendor Marketplace Solution <= 4.2.4 - Cross-Site Request Forgery to Vendor Updates CWE-352 6.3 Medium2024-10-24
CVE-2024-9531 MultiVendorX – The Ultimate WooCommerce Multivendor Marketplace Solution <= 4.2.4 - Missing Authorization to Forged Vendor Profile Deletion Email Sending CWE-285 4.3 Medium2024-10-24
CVE-2024-8289 MultiVendorX – The Ultimate WooCommerce Multivendor Marketplace Solution <= 4.2.0 - Missing Authorization to Limited Vendor Privilege Escalation/Account Takeover CWE-862 9.8 Critical2024-09-04
CVE-2024-5259 MultiVendorX Marketplace – WooCommerce MultiVendor Marketplace Solution <= 4.1.11 - Authenticated (Contributor+) Stored Cross-Site Scripting via hover_animation Parameter CWE-79 6.4 Medium2024-06-06
CVE-2020-36741 MultiVendorX – MultiVendor Marketplace Solution For WooCommerce <= 3.5.7 - Cross-Site Request Forgery Bypass CWE-352 4.3 Medium2023-07-01

All 8 known CVE vulnerabilities affecting MultiVendorX – WooCommerce Multivendor Marketplace Solutions with full Chinese analysis, references, and POCs where available.