Exposição de WooCommerce
Ecommerce, WordPress plugins1.776
score de exposição
591.334
sites usam
0
em exploração
157
críticos
CVEs
2.028 resultadosCVE-2022-0149—WooCommerce – Store Exporter < 2.7.1 - Reflected Cross-Site Scripting (XSS)EPSS 2.3%CVE-2024-9186HIGHAutomation By Autonami < 3.3.0 - Unauthenticated SQLiEPSS 2.2%CVE-2022-33901MEDIUMWordPress MultiSafepay plugin for WooCommerce plugin <= 4.13.1 - Unauthenticated Arbitrary File Read vulnerabilityEPSS 2.1%CVE-2024-13346HIGHAvada Theme <= 7.11.13 - Unauthenticated Arbitrary Shortcode ExecutionEPSS 2.1%CVE-2022-4939CRITICALWCFM Membership <= 2.10.0 - Unauthenticated Privilege EscalationEPSS 2.1%CVE-2025-13339HIGHHippoo Mobile App for WooCommerce <= 1.7.1 - Unauthenticated Arbitrary File ReadEPSS 2.1%CVE-2021-24171—WooCommerce Upload Files < 59.4 - Unauthenticated Arbitrary File UploadEPSS 1.9%CVE-2025-4403CRITICALDrag and Drop Multiple File Upload for WooCommerce <= 1.1.6 - Unauthenticated Arbitrary File Upload via upload FunctionEPSS 1.8%CVE-2022-0234—WOOCS < 1.3.7.5 - Reflected Cross-Site ScriptingEPSS 1.8%CVE-2025-10897HIGHWooCommerce Designer Pro <= 1.9.28 - Unauthenticated Arbitrary File ReadEPSS 1.7%CVE-2023-2706HIGHOTP Login Woocommerce & Gravity Forms <= 2.2 - Authentication Bypass to Privilege EscalationEPSS 1.7%CVE-2026-49777CRITICALWordPress Product Slider Pro for WooCommerce plugin < 3.5.4 - Backdoor vulnerabilityEPSS 1.7%CVE-2021-25085—WOOF - Products Filter for WooCommerce < 1.2.6.3 - Reflected Cross-Site ScriptingEPSS 1.7%CVE-2024-8277CRITICALWooCommerce Photo Reviews Premium <= 1.3.13.2 - Authentication Bypass to Account Takeover and Privilege EscalationEPSS 1.6%CVE-2022-1916—Active Products Tables for WooCommerce < 1.0.5 - Reflected Cross-Site-ScriptingEPSS 1.6%CVE-2022-0478—Event Manager for WooCommerce < 3.5.8 - Contributor+ SQL InjectionEPSS 1.5%CVE-2024-5324HIGHXootiX Framework <= Various Plugin Versions - Missing Authorization to Arbitrary Options UpdateEPSS 1.5%CVE-2021-24511—Create WooCommerce Product Feeds For 40+ Merchants < 3.3.1.0 - Authenticated SQL InjectionEPSS 1.5%CVE-2026-3396HIGHWCAPF – WooCommerce Ajax Product Filter <= 4.2.3 - Unauthenticated Time-Based SQL InjectionEPSS 1.5%CVE-2024-27971HIGHWordPress Premmerce Permalink Manager for WooCommerce plugin <= 2.3.10 - Local File Inclusion vulnerabilityEPSS 1.5%
Quer saber se a sua infraestrutura está exposta a isto?
Falar com a TrueHacking →