6 matches found
CVE-2026-31919 WordPress Advanced Coupons for WooCommerce Coupons plugin <= 4.7.1 - Broken Access Control vulnerability
Missing Authorization vulnerability in Josh Kohlbach Advanced Coupons for WooCommerce Coupons advanced-coupons-for-woocommerce-free allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced Coupons for WooCommerce Coupons: from n/a through = 4.7.1...
CVE-2026-31919
CVE-2026-31919 affects the WordPress plugin Josh Kohlbach Advanced Coupons for WooCommerce Coupons (free) up to version 4.7.1. The issue is a Missing Authorization vulnerability described as Broken Access Control due to incorrectly configured access control security levels. The CVE notes a CVSS v...
WordPress plugin Advanced Coupons for WooCommerce Coupons 安全漏洞
WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows users to create personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be installed t...
WordPress Coupons Plugin <= 1.5.0 is vulnerable to Cross Site Scripting (XSS)
Software Coupons Type Plugin Vulnerable versions = 1.5.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 2df99ce52d30 Credits Rafie Muhammad Patchstack Required privile...
CVE-2022-43481
Cross-Site Request Forgery CSRF vulnerability in Advanced Coupons for WooCommerce Coupons plugin = 4.5 on WordPress leading to notice dismissal...
CVE-2022-43481
Advanced Coupons for WooCommerce Coupons plugin (WordPress) contains a CSRF vulnerability affecting the dismissal of in‑app notices in versions up to and including 4.5.0.1. The root cause is likely missing CSRF protection on the notice dismissal action, enabling an attacker to trigger notice dism...