14 matches found
CVE-2026-48971 WordPress Product Import Export for WooCommerce plugin <= 2.5.6 - Broken Access Control vulnerability
Missing Authorization vulnerability in WebToffee Product Import Export for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Product Import Export for WooCommerce: from n/a through 2.5.6...
EUVD-2025-15510
Malicious code in bioql PyPI...
CVE-2025-48144
Cross-Site Request Forgery CSRF vulnerability in sidngr Import Export For WooCommerce import-export-for-woocommerce allows Stored XSS.This issue affects Import Export For WooCommerce: from n/a through = 1.6.2...
CVE-2025-48144
Cross-Site Request Forgery CSRF vulnerability in sidngr Import Export For WooCommerce import-export-for-woocommerce allows Stored XSS.This issue affects Import Export For WooCommerce: from n/a through = 1.6.2...
CVE-2025-48144 WordPress Import Export For WooCommerce plugin <= 1.6.2 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in sidngr Import Export For WooCommerce import-export-for-woocommerce allows Stored XSS.This issue affects Import Export For WooCommerce: from n/a through = 1.6.2...
CVE-2025-48144
CVE-2025-48144 is a CSRF-to-Stored XSS vulnerability in the WordPress plugin “Import Export For WooCommerce” affecting versions up to 1.6.2. Public sources in the provided documents confirm a Cross-Site Request Forgery vulnerability that enables Stored XSS, but no patched version or mitigation is...
CVE-2025-48144 WordPress Import Export For WooCommerce plugin <= 1.6.2 - CSRF to Stored XSS vulnerability
Cross-Site Request Forgery CSRF vulnerability in sidngr Import Export For WooCommerce allows Stored XSS. This issue affects Import Export For WooCommerce: from n/a through 1.6.2...
WordPress plugin Import Export For WooCommerce 跨站请求伪造漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed in the PHP language. WordPress plugin is an application plugin that supports personal blog sites on PHP and MySQL servers. A cross-site request forgery vulnerability exists in...
Exploit for CVE-2024-54262
CVE-2024-54262 Exploit CVE-2024-54262: Arbitrary File Upload i...
CVE-2024-54262
Unrestricted Upload of File with Dangerous Type vulnerability in sidngr Import Export For WooCommerce import-export-for-woocommerce allows Upload a Web Shell to a Web Server.This issue affects Import Export For WooCommerce: from n/a through = 1.6.2...
CVE-2024-54262
CVE-2024-54262 concerns the WordPress plugin Import Export For WooCommerce (versions up to 1.5). The vulnerability is described as Unrestricted Upload of File with Dangerous Type, enabling an attacker to upload a web shell to the web server. Public sources (Red Hat advisory) corroborate the same ...
CVE-2024-49244
CVE-2024-49244 describes a SQL Injection in the cmssoft CSV Product Import Export for WooCommerce plugin, affecting versions 1.0.0 and earlier. The vulnerability stems from improper sanitization of input used in SQL commands. Public records (NVD, Red Hat, Patchstack) list the vulnerability with C...
CVE-2024-43259 WordPress Order Export for WooCommerce plugin <= 3.23 - Sensitive Data Exposure vulnerability
Insertion of Sensitive Information Into Sent Data vulnerability in WebFactory Order Export for WooCommerce order-export-and-more-for-woocommerce.This issue affects Order Export for WooCommerce: from n/a through = 3.23...
PT-2024-23277 · Webtoffee · Product Import Export For Woocommerce
Name of the Vulnerable Software and Affected Versions: Product Import Export for WooCommerce versions n/a through 2.4.1 Description: The issue is related to an Unrestricted Upload of File with Dangerous Type, which affects the WebToffee Product Import Export for WooCommerce. Recommendations: For...