CVE-2026-54803

CVE-2026-54803 affects the WordPress plugin SMS Alert Order Notifications up to version 3.9.4, with a subscriber privilege escalation vulnerability. Documents confirm affected product (WordPress plugin), vulnerable component (the plugin’s order notifications), and impact (privilege escalation for...

CVE-2026-32373

Missing Authorization vulnerability in Cozy Vision SMS Alert Order Notifications sms-alert allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SMS Alert Order Notifications: from n/a through = 3.9.0...

CVE-2025-66086

Missing Authorization vulnerability in Cozy Vision SMS Alert Order Notifications sms-alert allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects SMS Alert Order Notifications: from n/a through = 3.8.8...

CVE-2025-49915

The CVE-2025-49915 entry describes an SQL Injection vulnerability in the Cozy Vision SMS Alert Order Notifications (WordPress SMS Alert Order Notifications) plugin for WordPress. Affected component: the sms-alert functionality within the plugin, with versions up to and including 3.8.5. Root cause...

WordPress SMS Alert Order Notifications plugin <= 3.8.5 - SQL Injection vulnerability

SQL Injection vulnerability discovered by ChuongVN in WordPress Plugin SMS Alert Order Notifications versions = 3.8.5...