Vulnerability Name CVE Severity
WordPress Plugin WooCommerce-Store Exporter Multiple Cross-Site Scripting Vulnerabilities (1.7.5)
WordPress Plugin WooCommerce-Store Exporter Privilege Escalation (1.8.3) CVE-2016-10935
WordPress Plugin WooCommerce-Store Toolkit Privilege Escalation (1.5.6)
WordPress Plugin WooCommerce-Store Toolkit Privilege Escalation (1.5.7)
WordPress Plugin WooCommerce Address Book Cross-Site Request Forgery (1.5.6) CVE-2019-15770
WordPress Plugin WooCommerce Admin Security Bypass (2.6.3)
WordPress Plugin WooCommerce Affiliate-Coupon Affiliates Cross-Site Request Forgery (4.11.3.3)
WordPress Plugin WooCommerce Affiliate-Coupon Affiliates Cross-Site Scripting (4.11.0.1)
WordPress Plugin Woocommerce Aliexpress Dropshipping Lite PHP Object Injection (1.0.1)
WordPress Plugin WooCommerce Amazon Affiliates Multiple Vulnerabilities (8.0)
WordPress Plugin WooCommerce Anti-Fraud Security Bypass (3.2)
WordPress Plugin WooCommerce Arbitrary File Deletion (3.4.5) CVE-2018-20714
WordPress Plugin WooCommerce Arbitrary File Download (3.4.5)
WordPress Plugin WooCommerce Blocks Security Bypass (3.7.0)
WordPress Plugin WooCommerce Blocks SQL Injection (5.5.0) CVE-2021-32789
WordPress Plugin WooCommerce BuddyPress Integration Security Bypass (3.2.5)
WordPress Plugin WooCommerce BuddyPress Integration Unspecified Vulnerability (3.2.6.1)
WordPress Plugin WooCommerce Cart Expiration PHP Object Injection (0.1.0)
WordPress Plugin WooCommerce Catalog Enquiry Arbitrary File Upload (3.0.0)
WordPress Plugin Woocommerce Categories in gallery format Cross-Site Scripting (1.0.1) CVE-2021-24435
WordPress Plugin Woocommerce Category Banner Management Security Bypass (1.1.1) CVE-2018-11579
WordPress Plugin WooCommerce Checkout For Digital Goods Cross-Site Request Forgery (2.2)
WordPress Plugin WooCommerce Checkout Manager Arbitrary File Upload (4.2.6)
WordPress Plugin WooCommerce Checkout Manager Cross-Site Request Forgery (4.3)
WordPress Plugin WooCommerce Checkout Manager Multiple Unspecified Vulnerabilities (3.6.9)
WordPress Plugin WooCommerce Conversion Tracking Cross-Site Request Forgery (2.0.4)
WordPress Plugin WooCommerce Cross-Seller Unspecified Vulnerability (1.0.2)
WordPress Plugin WooCommerce Cross-Site Request Forgery (2.2.2) CVE-2014-6313
WordPress Plugin WooCommerce Cross-Site Request Forgery (3.6.4)
WordPress Plugin WooCommerce Cross-Site Scripting (2.0.12)
WordPress Plugin WooCommerce Cross-Site Scripting (2.0.17)
WordPress Plugin WooCommerce Cross-Site Scripting (2.2.10) CVE-2015-2069
WordPress Plugin WooCommerce Cross-Site Scripting (2.4.8)
WordPress Plugin WooCommerce Cross-Site Scripting (2.6.2)
WordPress Plugin WooCommerce Cross-Site Scripting (2.6.3)
WordPress Plugin WooCommerce Cross-Site Scripting (2.6.8) CVE-2016-10112
WordPress Plugin WooCommerce Cross-Site Scripting (3.4.5)
WordPress Plugin WooCommerce Cross-Site Scripting (3.5.0)
WordPress Plugin WooCommerce Cross-Site Scripting (3.5.4) CVE-2019-9168
WordPress Plugin WooCommerce Cross-Site Scripting (5.1.0)
WordPress Plugin WooCommerce Cross-Site Scripting (8.9.2) CVE-2024-37297
WordPress Plugin Woocommerce CSV importer Arbitrary File Deletion (3.3.6)
WordPress Plugin Woocommerce CSV importer Unspecified Vulnerability (3.4.0)
WordPress Plugin WooCommerce Customers Manager Multiple Vulnerabilities (26.5)
WordPress Plugin WooCommerce Customers Manager Privilege Escalation (26.4)
WordPress Plugin WooCommerce Customers Manager Unspecified Vulnerability (26.6)
WordPress Plugin WooCommerce Dynamic Pricing & Discounts Multiple Vulnerabilities (2.4.1)
WordPress Plugin WooCommerce Email Test Information Disclosure (1.5)
WordPress Plugin WooCommerce Enhanced Ecommerce Analytics Integration with Conversion Tracking Multiple Vulnerabilities (1.8)
WordPress Plugin WooCommerce EnvioPack Cross-Site Scripting (1.2) CVE-2021-39314
WordPress Plugin WooCommerce Export Orders and More Cross-Site Scripting (2.0.10)
WordPress Plugin WooCommerce Extra Product Options Multiple Vulnerabilities (4.5.3)
WordPress Plugin WooCommerce Help Scout Arbitrary File Upload (2.9) CVE-2021-24212
WordPress Plugin WooCommerce HTML Injection (6.5.1) CVE-2022-2099
WordPress Plugin WooCommerce Information Disclosure (4.5.2) CVE-2020-29156
WordPress Plugin WooCommerce Instamojo Cross-Site Scripting (0.0.6)
WordPress Plugin WooCommerce Multi Currency-Currency Switcher Security Bypass (2.1.17)
WordPress Plugin WooCommerce Multilingual-run WooCommerce with WPML Multiple Unspecified Vulnerabilities (3.5.4)
WordPress Plugin WooCommerce Multiple Vulnerabilities (2.3.5) CVE-2015-2329
WordPress Plugin WooCommerce Multiple Vulnerabilities (6.2.0) CVE-2022-0775
WordPress Plugin WooCommerce Object Injection (2.3.10)
WordPress Plugin WooCommerce OpenPOS Arbitrary File Deletion (6.4.4) CVE-2024-37932
WordPress Plugin WooCommerce OpenPOS SQL Injection (6.4.4) CVE-2024-37933
WordPress Plugin WooCommerce Open Redirect (3.7.0)
WordPress Plugin Woocommerce Payment Gateway per Category Cross-Site Scripting (2.0.10) CVE-2021-38341
WordPress Plugin WooCommerce Payments-Fully Integrated Solution Built and Supported by Woo Security Bypass (5.6.1) CVE-2023-28121
WordPress Plugin WooCommerce PayPal Checkout Payment Gateway Parameter Tampering (1.6.8) CVE-2019-7441
WordPress Plugin WooCommerce PayPlug Unspecified Vulnerability (3.1.0)
WordPress Plugin WooCommerce PayU India (PayUmoney-PayUbiz) Parameter Tampering (2.1.1) CVE-2019-14978
WordPress Plugin WooCommerce PDF Invoice Bulk Download Cross-Site Scripting (1.0.0)
WordPress Plugin WooCommerce PDF Invoices & Packing Slips Cross-Site Request Forgery (2.2.6)
WordPress Plugin WooCommerce PDF Invoices & Packing Slips Cross-Site Scripting (2.0.12)
WordPress Plugin WooCommerce PDF Vouchers-Ultimate Gift Cards Security Bypass (4.9.3) CVE-2024-7027
WordPress Plugin WooCommerce PDF Vouchers-Ultimate Gift Cards Unspecified Vulnerability (4.9.4)
WordPress Plugin WooCommerce PHP Object Injection (3.1.0)