Lucene search

TheDotstore Security Vulnerabilities

cve

CVE-2022-4547

The Conditional Payment Methods for WooCommerce WordPress plugin through 1.0 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by [high privilege users such as admin|users with a role as low as...

7.2CVSS

7.2AI Score

0.001EPSS

2023-01-16 04:15 PM

cve

CVE-2023-40212

Cross-Site Request Forgery (CSRF) vulnerability in theDotstore Product Attachment for WooCommerce plugin <= 2.1.8...

6.5CVSS

6.6AI Score

0.0005EPSS

2023-10-03 01:15 PM

cve

CVE-2023-39158

Cross-Site Request Forgery (CSRF) vulnerability in theDotstore Banner Management For WooCommerce plugin <= 2.4.2...

6.5CVSS

6.5AI Score

0.0005EPSS

2023-10-03 02:15 PM

cve

CVE-2023-39159

Cross-Site Request Forgery (CSRF) vulnerability in theDotstore Fraud Prevention For Woocommerce plugin <= 2.1.5...

6.5CVSS

6.5AI Score

0.0005EPSS

2023-10-03 01:15 PM

cve

CVE-2023-40559

Cross-Site Request Forgery (CSRF) vulnerability in theDotstore Dynamic Pricing and Discount Rules for WooCommerce plugin <= 2.4.0...

8.8CVSS

8.8AI Score

0.001EPSS

2023-10-04 03:15 PM

cve

CVE-2023-40561

Cross-Site Request Forgery (CSRF) vulnerability in theDotstore Enhanced Ecommerce Google Analytics for WooCommerce plugin <= 3.7.1...

8.8CVSS

8.8AI Score

0.001EPSS

2023-10-04 02:15 PM