7 matches found
CVE-2025-13369
CVE-2025-13369 concerns Premmerce WooCommerce Customers Manager for WordPress. The Wordfence report confirms a Reflected Cross-Site Scripting (XSS) vulnerability in the plugin, exploitable via the money_spent_from, money_spent_to, registered_from, and registered_to parameters in all versions up t...
PT-2026-1579
Name of the Vulnerable Software and Affected Versions Premmerce WooCommerce Customers Manager plugin for WordPress versions through 1.1.14 Description The Premmerce WooCommerce Customers Manager plugin for WordPress is susceptible to Reflected Cross-Site Scripting. This is due to inadequate input...
WordPress Premmerce WooCommerce Customers Manager Plugin <= 1.1.13 is vulnerable to Cross Site Scripting (XSS)
Software Premmerce WooCommerce Customers Manager Type Plugin Vulnerable versions = 1.1.13 Fixed in 1.1.14 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Premmerce PSID b3dee6c5c8f0 Credits Rafie Muhamm...
WordPress Premmerce WooCommerce Toolkit Plugin <= 1.1.6 is vulnerable to Cross Site Scripting (XSS)
Software Premmerce WooCommerce Toolkit Type Plugin Vulnerable versions = 1.1.6 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 4559e551f8bb Credits Rafie Muhammad...
WordPress Premmerce WooCommerce Toolkit plugin <= 1.1.6 - Sensitive Information Disclosure vulnerability
Sensitive Information Disclosure vulnerability discovered in WordPress Premmerce WooCommerce Toolkit plugin versions = 1.1.6. Solution No patched version available...
WordPress Premmerce WooCommerce Toolkit plugin <= 1.1.6 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Premmerce WooCommerce Toolkit plugin versions = 1.1.6. Solution No patched version available...
WordPress Premmerce WooCommerce Customers Manager plugin <= 1.1.12 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability
Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress Premmerce WooCommerce Customers Manager plugin versions = 1.1.12. Solution Update the WordPress Premmerce WooCommerce Customers Manager plugin to the latest available version at least 1.1.13...