CVE-2025-62925 WordPress Conversios.io plugin <= 7.2.13 - Broken Access Control vulnerability

Missing Authorization vulnerability in Conversios Conversios.io enhanced-e-commerce-for-woocommerce-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Conversios.io: from n/a through = 7.2.13...

EUVD-2022-49579

Malicious code in bioql PyPI...

WordPress plugin Conversios cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site...

CVE-2024-1203

The Conversios – Google Analytics 4 GA4, Meta Pixel & more Via Google Tag Manager For WooCommerce plugin for WordPress is vulnerable to SQL Injection via the 'valueData' parameter in all versions up to, and including, 6.9.1 due to insufficient escaping on the user supplied parameter and lack of...

Conversios < 7.0.8 - Subscriber+ SQL Injection

Description The plugin is vulnerable to SQL Injection via the 'valueData' parameter due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with subscriber-level access and above,...

PT-2023-29844 · WordPress · Conversios Track Google Analytics 4

Name of the Vulnerable Software and Affected Versions: Conversios Track Google Analytics 4, Facebook Pixel & Conversions API via Google Tag Manager for WooCommerce plugin versions = 6.5.3 Description: The issue is an Unauth. Reflected Cross-Site Scripting XSS vulnerability. This means that an...

CVE-2022-46797

Cross-Site Request Forgery CSRF vulnerability in Conversios All-in-one Google Analytics, Pixels and Product Feed Manager for WooCommerce plugin = 5.2.3 leads to plugin settings change...

PT-2023-15040 · WordPress · Conversios All-In-One Google Analytics

Name of the Vulnerable Software and Affected Versions: Conversios All-in-one Google Analytics, Pixels and Product Feed Manager for WooCommerce plugin versions = 5.2.3 Description: The issue is a Cross-Site Request Forgery CSRF vulnerability that allows for changes to the plugin settings. This can...