3 matches found
CVE-2023-2841
CVE-2023-2841 concerns the WordPress plugin Advanced Local Pickup for WooCommerce. The vulnerability is an SQL Injection via the id parameter in versions up to and including 1.5.5 due to insufficient escaping and query preparation. Exploitation requires Administrator-level privileges (authenticat...
CVE-2024-31283
CVE-2024-31283 is a Missing Authorization vulnerability in WordPress plugin Advanced Local Pickup for WooCommerce. The vulnerability affects the plugin version range up to 1.6.2 and is described in Red Hat and CVE listings as patched in later releases. Public details in connected sources indicate...
CVE-2022-40702
CVE-2022-40702: Missing Authorization in Zorem/Advanced Local Pickup for WooCommerce (WordPress plugin) affects versions