2 matches found
PT-2024-14156 · Woocommerce · Woocommerce Ship To Multiple Addresses
Name of the Vulnerable Software and Affected Versions: WooCommerce Ship to Multiple Addresses versions 3.8.9 and earlier Description: The issue is related to a Missing Authorization vulnerability. This vulnerability affects the Woo WooCommerce Ship to Multiple Addresses plugin. Recommendations: F...
WooCommerce Ship to Multiple Addresses < 3.8.6 - Cross-Site Request Forgery
Description The plugin does not have CSRF checks in some places, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks...