WordPress plugin Simple Registration for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plugin. A security vulnerabili...

CVE-2025-12095

The Simple Registration for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.8. This is due to missing nonce validation on the role requests admin page handler in the includes/display-role-admin.php file. This makes it possible...

CVE-2025-12095 Simple Registration for WooCommerce <= 1.5.8 - Cross-Site Request Forgery to Privilege Escalation via Role Request Approval

The Simple Registration for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.8. This is due to missing nonce validation on the role requests admin page handler in the includes/display-role-admin.php file. This makes it possible...

CVE-2025-12095 Simple Registration for WooCommerce <= 1.5.8 - Cross-Site Request Forgery to Privilege Escalation via Role Request Approval

The Simple Registration for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.8. This is due to missing nonce validation on the role requests admin page handler in the includes/display-role-admin.php file. This makes it possible...

CVE-2025-12095

CVE-2025-12095 concerns the WordPress plugin Simple Registration for WooCommerce (up to version 1.5.8). The root cause is missing nonce validation on the role-requests admin page handler in includes/display-role-admin.php, enabling CSRF that can privilege-escalate via forged requests if an admin ...

EUVD-2025-35903

The Simple Registration for WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.5.8. This is due to missing nonce validation on the role requests admin page handler in the includes/display-role-admin.php file. This makes it possible...

WordPress Simple Registration for WooCommerce plugin <= 1.5.8 - Cross-Site Request Forgery to Privilege Escalation via Role Request Approval vulnerability

Cross-Site Request Forgery to Privilege Escalation via Role Request Approval vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin Simple Registration for WooCommerce versions = 1.5.8...

EUVD-2024-30313

Malicious code in bioql PyPI...

CVE-2024-32511

Improper Privilege Management vulnerability in Astoundify Simple Registration for WooCommerce allows Privilege Escalation.This issue affects Simple Registration for WooCommerce: from n/a through 1.5.6...

CVE-2024-32511 WordPress Simple Registration for WooCommerce plugin <= 1.5.6 - Unauthenticated Privilege Escalation vulnerability

Improper Privilege Management vulnerability in Astoundify Simple Registration for WooCommerce allows Privilege Escalation.This issue affects Simple Registration for WooCommerce: from n/a through 1.5.6...

CVE-2024-32511

CVE-2024-32511 affects WordPress plugin Simple Registration for WooCommerce (Astoundify) up to version 1.5.6. The issue is described as an unauthenticated privilege-escalation due to improper privilege management, enabling an attacker to elevate permissions without authentication. Public referenc...

WordPress plugin Simple Registration for WooCommerce 安全漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A security vulnerability...

PT-2024-24629 · Woocommerce · Simple Registration For Woocommerce

Name of the Vulnerable Software and Affected Versions: Simple Registration for WooCommerce versions 1.5.6 and earlier Description: The issue is related to Improper Privilege Management, which allows Privilege Escalation. Recommendations: For versions 1.5.6 and earlier, update to a version that...

WordPress Simple Registration for WooCommerce plugin <= 1.5.6 - Unauthenticated Privilege Escalation vulnerability

Unauthenticated Privilege Escalation vulnerability discovered by NGÔ THIÊN AN Patchstack Alliance in WordPress Plugin Simple Registration for WooCommerce versions = 1.5.6...

WordPress Simple Registration for WooCommerce Plugin <= 1.5.6 is vulnerable to Privilege Escalation

Software Simple Registration for WooCommerce Type Plugin Vulnerable versions = 1.5.6 Fixed in N/A OWASP Top 10 A7: Identification and Authentication Failures Classification Privilege Escalation CVE CVE-2024-32511 Patch priority High CVSS severity High 9.8 Developer Claim ownership PSID 088fc8769d...