73 matches found
CVE-2023-45072
Auth. admin+ Stored Cross-Site Scripting XSS vulnerability in Kardi Order auto complete for WooCommerce plugin = 1.2.0 versions...
EUVD-2020-3850
Malware in sbrugna...
EUVD-2018-13260
Malware in sbrugna...
EUVD-2025-8350
Malicious code in bioql PyPI...
EUVD-2024-19743
Malicious code in bioql PyPI...
EUVD-2023-54664
Malicious code in bioql PyPI...
EUVD-2022-38166
Malicious code in bioql PyPI...
EUVD-2023-44032
Malicious code in bioql PyPI...
EUVD-2024-27812
Malicious code in bioql PyPI...
EUVD-2022-34810
Malicious code in bioql PyPI...
EUVD-2022-39114
Malicious code in bioql PyPI...
EUVD-2022-2632
Malicious code in bioql PyPI...
EUVD-2025-5631
Malicious code in bioql PyPI...
EUVD-2024-47554
Malicious code in bioql PyPI...
CVE-2025-30959
Missing Authorization vulnerability in WPFactory Product XML Feed Manager for WooCommerce product-xml-feeds-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Product XML Feed Manager for WooCommerce: from n/a through = 2.9.2...
CVE-2025-5816 Plugin Pengiriman WooCommerce Kurir Reguler, Instan, Kargo – Biteship <= 3.2.0 - Insecure Direct Object Reference to Authenticated (Subscriber+) View Order Tracking Details
The Plugin Pengiriman WooCommerce Kurir Reguler, Instan, Kargo – Biteship plugin for WordPress is vulnerable to Insecure Direct Object Reference in all versions up to, and including, 3.2.0 via the getorderdetail due to missing validation on a user controlled key. This makes it possible for...
PT-2025-29999 · WordPress · Woocommerce Refund/Exchange With Rma - Warranty Management
Name of the Vulnerable Software and Affected Versions: WooCommerce Refund And Exchange with RMA - Warranty Management, Refund Policy, Manage User Wallet versions up to and including 3.2.6 Description: The WooCommerce Refund And Exchange with RMA - Warranty Management, Refund Policy, Manage User...
CVE-2025-29009 WordPress Medical Prescription Attachment Plugin for WooCommerce <= 1.2.3 - Arbitrary File Upload Vulnerability
Unrestricted Upload of File with Dangerous Type vulnerability in Webkul Medical Prescription Attachment Plugin for WooCommerce allows Upload a Web Shell to a Web Server. This issue affects Medical Prescription Attachment Plugin for WooCommerce: from n/a through 1.2.3...
CVE-2025-49319 WordPress Wishlist for WooCommerce <= 3.2.3 - Broken Access Control Vulnerability
Missing Authorization vulnerability in WPFactory Wishlist for WooCommerce wish-list-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Wishlist for WooCommerce: from n/a through = 3.2.3...
CVE-2025-3780
The WCFM – Frontend Manager for WooCommerce along with Bookings Subscription Listings Compatible plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the wcfmredirecttosetup function in all versions up to, and including, 6.7.16. This makes i...