WordPress plugin Simple Registration for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

CVE-2025-12095

The Simple Registration for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.8. This is due to missing nonce validation on the role requests admin page handler in the includes/display-role-admin.php file. This makes it possible...

EUVD-2025-35903

The Simple Registration for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.8. This is due to missing nonce validation on the role requests admin page handler in the includes/display-role-admin.php file. This makes it possible...

CVE-2025-12095 Simple Registration for WooCommerce <= 1.5.8 - Cross-Site Request Forgery to Privilege Escalation via Role Request Approval

The Simple Registration for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.8. This is due to missing nonce validation on the role requests admin page handler in the includes/display-role-admin.php file. This makes it possible...

CVE-2025-12095 Simple Registration for WooCommerce <= 1.5.8 - Cross-Site Request Forgery to Privilege Escalation via Role Request Approval

The Simple Registration for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.8. This is due to missing nonce validation on the role requests admin page handler in the includes/display-role-admin.php file. This makes it possible...

CVE-2025-12095

CVE-2025-12095 concerns the WordPress plugin Simple Registration for WooCommerce (up to version 1.5.8). The root cause is missing nonce validation on the role-requests admin page handler in includes/display-role-admin.php, enabling CSRF that can privilege-escalate via forged requests if an admin ...

WordPress Simple Registration for WooCommerce plugin <= 1.5.8 - Cross-Site Request Forgery to Privilege Escalation via Role Request Approval vulnerability

Cross-Site Request Forgery to Privilege Escalation via Role Request Approval vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin Simple Registration for WooCommerce versions = 1.5.8...

EUVD-2024-30313

Malicious code in bioql PyPI...

CVE-2024-32511

Improper Privilege Management vulnerability in Astoundify Simple Registration for WooCommerce allows Privilege Escalation.This issue affects Simple Registration for WooCommerce: from n/a through 1.5.6...

CVE-2024-32511 WordPress Simple Registration for WooCommerce plugin <= 1.5.6 - Unauthenticated Privilege Escalation vulnerability

Improper Privilege Management vulnerability in Astoundify Simple Registration for WooCommerce allows Privilege Escalation.This issue affects Simple Registration for WooCommerce: from n/a through 1.5.6...

CVE-2024-32511

CVE-2024-32511 affects WordPress plugin Simple Registration for WooCommerce (Astoundify) up to version 1.5.6. The issue is described as an unauthenticated privilege-escalation due to improper privilege management, enabling an attacker to elevate permissions without authentication. Public referenc...

PT-2024-24629 · Woocommerce · Simple Registration For Woocommerce

Name of the Vulnerable Software and Affected Versions: Simple Registration for WooCommerce versions 1.5.6 and earlier Description: The issue is related to Improper Privilege Management, which allows Privilege Escalation. Recommendations: For versions 1.5.6 and earlier, update to a version that...

WordPress plugin Simple Registration for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

WordPress Simple Registration for WooCommerce plugin <= 1.5.6 - Unauthenticated Privilege Escalation vulnerability

Unauthenticated Privilege Escalation vulnerability discovered by NGÔ THIÊN AN Patchstack Alliance in WordPress Plugin Simple Registration for WooCommerce versions = 1.5.6...

WordPress Simple Registration for WooCommerce Plugin <= 1.5.6 is vulnerable to Privilege Escalation

Software Simple Registration for WooCommerce Type Plugin Vulnerable versions = 1.5.6 Fixed in N/A OWASP Top 10 A7: Identification and Authentication Failures Classification Privilege Escalation CVE CVE-2024-32511 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 088fc8769d...