Woocommerce Security Vulnerabilities and Issues — Woocommerce CVE List

Lucene search

AutomatticWoocommerce

3 matches found

CVE•added 2024/08/18 2:15 p.m.•64 views

CVE-2024-39666

Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Automattic WooCommerce.This issue affects WooCommerce: from n/a through 9.1.2.

5.9CVSS5.8AI score0.00039EPSS

CVE•added 2024/11/18 10:15 p.m.•53 views

CVE-2024-10486

The Google for WooCommerce plugin for WordPress is vulnerable to Information Disclosure in all versions up to, and including, 2.8.6. This is due to publicly accessible print_php_information.php file. This makes it possible for unauthenticated attackers to retrieve information about Webserver and PH...

5.3CVSS4.9AI score0.02914EPSS

CVE•added 2025/03/27 4:15 p.m.•43 views

CVE-2025-26762

Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Automattic WooCommerce allows Stored XSS.This issue affects WooCommerce: from n/a through 9.7.0.

5.9CVSS5.8AI score0.00063EPSS