20 matches found
CVE-2026-49059
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Facebook Facebook for WooCommerce allows Phishing. This issue affects Facebook for WooCommerce: from n/a through 3.7.0...
EUVD-2026-32529
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Facebook Facebook for WooCommerce allows Phishing. This issue affects Facebook for WooCommerce: from n/a through 3.7.0...
CVE-2026-49059 WordPress Facebook for WooCommerce plugin <= 3.7.0 - Open Redirection vulnerability
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Facebook Facebook for WooCommerce allows Phishing. This issue affects Facebook for WooCommerce: from n/a through 3.7.0...
CVE-2026-49059 WordPress Facebook for WooCommerce plugin <= 3.7.0 - Open Redirection vulnerability
URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Facebook Facebook for WooCommerce allows Phishing. This issue affects Facebook for WooCommerce: from n/a through 3.7.0...
CVE-2025-64296
Missing Authorization vulnerability in Facebook Facebook for WooCommerce facebook-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Facebook for WooCommerce: from n/a through = 3.5.7...
CVE-2025-64296
Missing Authorization vulnerability in Facebook Facebook for WooCommerce facebook-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Facebook for WooCommerce: from n/a through = 3.5.7...
CVE-2025-64296 WordPress Facebook for WooCommerce plugin <= 3.5.7 - Broken Access Control to Notice Dismissal vulnerability
Missing Authorization vulnerability in Facebook Facebook for WooCommerce facebook-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Facebook for WooCommerce: from n/a through = 3.5.7...
CVE-2025-64296
CVE-2025-64296 corresponds to a Missing Authorization / Broken Access Control issue in the Facebook for WooCommerce plugin (
WordPress plugin Facebook for WooCommerce 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin... A security...
PT-2025-44232
Name of the Vulnerable Software and Affected Versions Facebook for WooCommerce versions through 3.5.7 Description A missing authorization issue exists in Facebook for WooCommerce, allowing exploitation of incorrectly configured access control security levels. Recommendations Update Facebook for...
Malicious code in facebook-for-woocommerce (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e0ca4dfebc7839330f25a231f2f87af41aef50ea715541751bef46a1709f045e The OpenSSF Package Analysis project identified 'facebook-for-woocommerce' @ 3.6.6 npm as malicious. It is considered malicious because: - The...
MAL-2025-6824 Malicious code in facebook-for-woocommerce (npm)
--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e0ca4dfebc7839330f25a231f2f87af41aef50ea715541751bef46a1709f045e The OpenSSF Package Analysis project identified 'facebook-for-woocommerce' @ 3.6.6 npm as malicious. It is considered malicious because: - The...
WordPress Facebook for WooCommerce Plugin < 1.9.14 CSRF Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.113504";...
WordPress facebook-for-woocommerce plugin cross-site request forgery vulnerability
WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports personal blog sites on PHP and MySQL servers. facebook-for-woocommerce is a plug-in that enables marketing through Facebook. A cross-site request forgery vulnerability exis...
CVE-2019-15841
The facebook-for-woocommerce plugin before 1.9.15 for WordPress has CSRF via ajaxwooinfobannerpostclick, ajaxwooinfobannerpostxout, or ajaxfbtogglevisibility...
CVE-2019-15840
The facebook-for-woocommerce plugin before 1.9.14 for WordPress has CSRF...
CVE-2019-15840
The facebook-for-woocommerce plugin before 1.9.14 for WordPress has CSRF...
Cross site request forgery (csrf)
The facebook-for-woocommerce plugin before 1.9.15 for WordPress has CSRF via ajaxwooinfobannerpostclick, ajaxwooinfobannerpostxout, or ajaxfbtogglevisibility...
CVE-2019-15841
CVE-2019-15841 affects the WordPress Facebook for WooCommerce plugin prior to 1.9.15. The vulnerability is a CSRF flaw in the AJAX actions ajax_woo_infobanner_post_click, ajax_woo_infobanner_post_xout, and ajax_fb_toggle_visibility, enabling unintended requests to the server. Affected software: W...
CVE-2019-15840
CVE-2019-15840 affects the WordPress plugin facebook-for-woocommerce prior to version 1.9.14. The issue is a cross-site request forgery (CSRF) vulnerability in the plugin’s handling of sensitive actions, exposed via the plugin’s WordPress integration. The root cause is insufficient CSRF protectio...