Known vulnerabilities in WooCommerce WooCommerce

Vendor: WooCommerce
Website: https://wordpress.org/plugins/woocommerce/
Total Security Bulletins: 16

Security bulletins (16)

Secuity bulletin Severity Status Published
SB2024061239: Cross-site scripting in WooCommerce Medium
Patched
12.06.2024
SB2021072911: SQL injection in WooCommerce plugin for WordPress Low
Patched
29.07.2021
SB2021071603: SQL injection in WooCommerce and WooCommerce Blocks plugin Critical
Patched Exploited
16.07.2021
SB2020110939: Improper access control in WooCommerce plugin for WordPress Medium
Patched
09.11.2020
SB2020062314: Cross-site scripting in WooCommerce plugin for WordPress Low
Patched
23.06.2020
SB2020061925: Cross-site request forgery in WooCommerce WooCommerce Medium
Patched
19.06.2020
SB2020051407: Cross-site scripting in WooCommerce plugin for WordPress Low
Patched
14.05.2020
SB2019070811: CSRF in WooCommerce Medium
Patched
08.07.2019
SB2019022012: Multiple vulnerabilities in WooCommerce Medium
Patched
20.02.2019
SB2019021701: Input validation error in WooCommerce WooCommerce Medium
Patched Public exploit
17.02.2019
SB2019011512: Code Injection in WooCommerce WooCommerce High
Patched
15.01.2019
SB2019011515: Path traversal in WooCommerce WooCommerce High
Patched
15.01.2019
SB2018110711: Remote code execution in WooCommerce plugin for WordPress High
Patched
07.11.2018
SB2018020926: Cross-site scripting in WooCommerce WooCommerce Low
Patched
09.02.2018
SB2017010401: XSS in WooCommerce plugin for WordPress Low
Patched
04.01.2017
SB2016120704: Cross-site scripting in WooCommerce WooCommerce Low
Patched
07.12.2016