Lucene search
K

20 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:35 p.m.10 views

CVE-2026-49059

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Facebook Facebook for WooCommerce allows Phishing. This issue affects Facebook for WooCommerce: from n/a through 3.7.0...

4.7CVSS5.4AI score0.00231EPSS
Exploits0References1
EUVD
EUVD
added 2026/05/27 2:33 p.m.9 views

EUVD-2026-32529

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Facebook Facebook for WooCommerce allows Phishing. This issue affects Facebook for WooCommerce: from n/a through 3.7.0...

4.7CVSS5.8AI score0.00231EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/27 2:33 p.m.40 views

CVE-2026-49059 WordPress Facebook for WooCommerce plugin <= 3.7.0 - Open Redirection vulnerability

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Facebook Facebook for WooCommerce allows Phishing. This issue affects Facebook for WooCommerce: from n/a through 3.7.0...

4.7CVSS0.00231EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/27 2:33 p.m.9 views

CVE-2026-49059 WordPress Facebook for WooCommerce plugin <= 3.7.0 - Open Redirection vulnerability

URL Redirection to Untrusted Site 'Open Redirect' vulnerability in Facebook Facebook for WooCommerce allows Phishing. This issue affects Facebook for WooCommerce: from n/a through 3.7.0...

4.7CVSS5.8AI score0.00231EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/10/30 5:6 a.m.3 views

CVE-2025-64296

Missing Authorization vulnerability in Facebook Facebook for WooCommerce facebook-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Facebook for WooCommerce: from n/a through = 3.5.7...

5.3CVSS5.9AI score0.00198EPSS
Exploits0References1
NVD
NVD
added 2025/10/29 4:16 a.m.3 views

CVE-2025-64296

Missing Authorization vulnerability in Facebook Facebook for WooCommerce facebook-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Facebook for WooCommerce: from n/a through = 3.5.7...

5.3CVSS0.00198EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/10/29 4:8 a.m.11 views

CVE-2025-64296 WordPress Facebook for WooCommerce plugin <= 3.5.7 - Broken Access Control to Notice Dismissal vulnerability

Missing Authorization vulnerability in Facebook Facebook for WooCommerce facebook-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Facebook for WooCommerce: from n/a through = 3.5.7...

5.3CVSS0.00198EPSS
Exploits0References1
CVE
CVE
added 2025/10/29 4:8 a.m.15 views

CVE-2025-64296

CVE-2025-64296 corresponds to a Missing Authorization / Broken Access Control issue in the Facebook for WooCommerce plugin (

5.3CVSS5.9AI score0.00198EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/10/29 12:0 a.m.6 views

WordPress plugin Facebook for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platforms developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin... A security...

5.3CVSS6.4AI score0.00198EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/29 12:0 a.m.5 views

PT-2025-44232

Name of the Vulnerable Software and Affected Versions Facebook for WooCommerce versions through 3.5.7 Description A missing authorization issue exists in Facebook for WooCommerce, allowing exploitation of incorrectly configured access control security levels. Recommendations Update Facebook for...

5.3CVSS6.6AI score0.00198EPSS
Exploits0References5
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/08/12 7:20 a.m.5 views

Malicious code in facebook-for-woocommerce (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e0ca4dfebc7839330f25a231f2f87af41aef50ea715541751bef46a1709f045e The OpenSSF Package Analysis project identified 'facebook-for-woocommerce' @ 3.6.6 npm as malicious. It is considered malicious because: - The...

7.1AI score
Exploits0
OSV
OSV
added 2025/08/12 7:20 a.m.3 views

MAL-2025-6824 Malicious code in facebook-for-woocommerce (npm)

--- -= Per source details. Do not edit below this line.=- Source: ossf-package-analysis e0ca4dfebc7839330f25a231f2f87af41aef50ea715541751bef46a1709f045e The OpenSSF Package Analysis project identified 'facebook-for-woocommerce' @ 3.6.6 npm as malicious. It is considered malicious because: - The...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2019/09/11 12:0 a.m.25 views

WordPress Facebook for WooCommerce Plugin < 1.9.14 CSRF Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription scriptoid"1.3.6.1.4.1.25623.1.0.113504";...

8.8CVSS8.9AI score0.00693EPSS
Exploits0References1
CNVD
CNVD
added 2019/09/02 12:0 a.m.3 views

WordPress facebook-for-woocommerce plugin cross-site request forgery vulnerability

WordPress is a set of blogging platforms developed using the PHP language by the WordPress Foundation. The platform supports personal blog sites on PHP and MySQL servers. facebook-for-woocommerce is a plug-in that enables marketing through Facebook. A cross-site request forgery vulnerability exis...

8.8CVSS6.7AI score0.00693EPSS
Exploits0References1
OSV
OSV
added 2019/08/30 5:15 p.m.4 views

CVE-2019-15841

The facebook-for-woocommerce plugin before 1.9.15 for WordPress has CSRF via ajaxwooinfobannerpostclick, ajaxwooinfobannerpostxout, or ajaxfbtogglevisibility...

8.8CVSS7.3AI score0.00693EPSS
Exploits0References1
NVD
NVD
added 2019/08/30 5:15 p.m.28 views

CVE-2019-15840

The facebook-for-woocommerce plugin before 1.9.14 for WordPress has CSRF...

8.8CVSS8.8AI score0.00693EPSS
Exploits0References1
OSV
OSV
added 2019/08/30 5:15 p.m.5 views

CVE-2019-15840

The facebook-for-woocommerce plugin before 1.9.14 for WordPress has CSRF...

8.8CVSS7.3AI score0.00693EPSS
Exploits0References1
Prion
Prion
added 2019/08/30 5:15 p.m.21 views

Cross site request forgery (csrf)

The facebook-for-woocommerce plugin before 1.9.15 for WordPress has CSRF via ajaxwooinfobannerpostclick, ajaxwooinfobannerpostxout, or ajaxfbtogglevisibility...

6.8CVSS8.8AI score0.00693EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/08/30 4:16 p.m.354 views

CVE-2019-15841

CVE-2019-15841 affects the WordPress Facebook for WooCommerce plugin prior to 1.9.15. The vulnerability is a CSRF flaw in the AJAX actions ajax_woo_infobanner_post_click, ajax_woo_infobanner_post_xout, and ajax_fb_toggle_visibility, enabling unintended requests to the server. Affected software: W...

8.8CVSS8.8AI score0.00693EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2019/08/30 4:15 p.m.342 views

CVE-2019-15840

CVE-2019-15840 affects the WordPress plugin facebook-for-woocommerce prior to version 1.9.14. The issue is a cross-site request forgery (CSRF) vulnerability in the plugin’s handling of sensitive actions, exposed via the plugin’s WordPress integration. The root cause is insufficient CSRF protectio...

8.8CVSS8.7AI score0.00693EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder