CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnrichment•added 2026/05/29 6:2 p.m.•10 views

CVE-2026-47741 Shopper: Race condition on Discount.usage_limit allows silent over-redemption

Shopper is a Headless e-commerce Admin Panel. Prior to 2.8.0, CreateOrderFromCartAction::execute previously created the Order row before checking and incrementing the discount's totaluse counter. Under concurrent checkout pressure Black Friday, flash sale, viral coupon, the global usagelimit was...

5.9CVSS5.8AI score0.00032EPSS

Exploits0References3

NVD•added 2026/05/19 3:16 p.m.•9 views

CVE-2026-47100

Funnel Builder for WooCommerce Checkout prior to 3.15.0.3 contains a missing authorization vulnerability in the public checkout endpoint that allows unauthenticated attackers to invoke internal methods and write arbitrary data to the plugin's External Scripts global setting. Attackers can inject...

8.7CVSS0.00048EPSS

Exploits1References3

NVD•added 2026/05/15 7:17 p.m.•17 views

CVE-2026-46408

7.6CVSS0.00038EPSS

Cvelist•added 2026/05/15 6:46 p.m.•29 views

CVE-2026-46408 Vvveb: checkout IDOR allows unauthorized reuse of another user's cart

7.6CVSS0.00038EPSS

CVE•added 2026/05/15 6:46 p.m.•8 views

CVE-2026-46408

Vvveb CMS vulnerable before 1.0.8.3: the checkout endpoint accepts a user-controlled cart_id and uses it to enter the payment flow without verifying cart ownership, enabling a logged-in attacker to reuse another user’s cart in their own checkout session. The fixed version is 1.0.8.3. Impact per s...

EUVD•added 2026/05/15 6:46 p.m.•6 views

EUVD-2026-30584

ATTACKERKB•added 2026/05/15 6:46 p.m.•3 views

CVE-2026-46408

Exploits0References2Affected Software1

Positive Technologies•added 2026/05/15 12:0 a.m.•6 views

PT-2026-41371

Vvveb is a powerful and easy to use CMS with page builder to build websites, blogs or ecommerce stores. Prior to 1.0.8.3, the checkout endpoint accepts a user-controlled cart id and uses it to enter the payment flow without verifying cart ownership. A logged-in attacker can therefore reuse anothe...

OSV•added 2026/05/13 10:16 p.m.•3 views

UBUNTU-CVE-2026-44471

gitoxide is an implementation of git written in Rust. Prior to 0.21.1, a malicious tree can be constructed that will, when checked out with gitoxide, permit writing an attacker-controlled symlink into any existing directory the user has write access to. During checkout, all symlink index entries...

7.8CVSS5.8AI score0.00006EPSS

Exploits1References3

Debian CVE•added 2026/05/13 9:36 p.m.•4 views

CVE-2026-44471

7.8CVSS5.8AI score0.00006EPSS

Exploits1

EUVD•added 2026/04/16 12:54 a.m.•2 views

EUVD-2026-23125

The Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content – ProfilePress plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 4.16.12. This is due to the 'processcheckout' function not properly enforcing...

4.3CVSS5.9AI score0.00041EPSS

Exploits0References8

EUVD•added 2026/04/08 9:31 a.m.•3 views

EUVD-2026-20349

Cross-Site Request Forgery CSRF vulnerability in Dotstore Extra Fees Plugin for WooCommerce woo-conditional-product-fees-for-checkout allows Cross Site Request Forgery.This issue affects Extra Fees Plugin for WooCommerce: from n/a through = 4.3.3...

5.9AI score0.00017EPSS

CVE•added 2026/04/04 8:25 a.m.•12 views

CVE-2026-3445

The CVE-2026-3445 entry documents a vulnerability in the ProfilePress WordPress plugin (Paid Membership Plugin, Ecommerce, User Registration Form, Login Form, User Profile & Restrict Content) affecting all versions up to 4.16.11. Root cause: missing ownership verification on the change_plan_sub_i...

7.1CVSS5.9AI score0.00011EPSS

NVD•added 2026/03/11 3:15 a.m.•4 views

CVE-2026-3453

The ProfilePress plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 4.16.11. This is due to missing ownership validation on the changeplansubid parameter in the processcheckout function. The ppressprocesscheckout AJAX handler accepts a...

8.1CVSS0.00061EPSS

Exploits0References5

Positive Technologies•added 2026/03/11 12:0 a.m.•1 views

PT-2026-24568

Name of the Vulnerable Software and Affected Versions ProfilePress versions prior to 4.16.11 Description The ProfilePress plugin for WordPress is susceptible to an Insecure Direct Object Reference issue. This is a result of a lack of ownership validation on the change plan sub id parameter within...

8.1CVSS5.9AI score0.00061EPSS

Exploits0References10

CNNVD•added 2026/02/06 12:0 a.m.•3 views

Spree 安全漏洞

Spree is an open-source e-commerce platform developed using Ruby on Rails by a individual developer. Vulnerabilities exist in versions prior to Spree 4.10.3, 5.0.8, 5.1.10, 5.2.7, and 5.3.2. These vulnerabilities stem from insecure direct object references within the checkout process, which could...

8.7CVSS5.8AI score0.00034EPSS

Exploits1References11

Cvelist•added 2026/01/24 7:26 a.m.•24 views

CVE-2025-14843 Wizit Gateway for WooCommerce <= 1.2.9 - Missing Authentication to Unauthenticated Arbitrary Order Cancellation

The Wizit Gateway for WooCommerce plugin for WordPress is vulnerable to Unauthenticated Arbitrary Order Cancellation in all versions up to, and including, 1.2.9. This is due to a lack of authentication and authorization checks in the 'handlecheckoutredirecturlresponse' function. This makes it...

5.3CVSS0.00062EPSS