Products, Order & Customers Export For Woocommerce

products,_order_&_customers_export_for_woocommerce

Vendor: Wpfactory • 3 CVEs

CVEs (3)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-9377 1Wpfactory 1Products, Order & Customers Export For Woocommerce Oct 15, 2024 Oct 10, 2024 N/A· v4 6.1 MEDIUM· v3 N/A· v2 The Products, Order & Customers Export for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in al...Show more The Products, Order & Customers Export for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg & remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.0.15. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.Show less
CVE-2024-31276 1Wpfactory 1Products, Order & Customers Export For Woocommerce Nov 21, 2024 Jun 9, 2024 N/A· v4 9.8 CRITICAL· v3 N/A· v2 Missing Authorization vulnerability in WPFactory Products, Order & Customers Export for WooCommerce.This issue affects Products, Order & Customers Export for WooCommerce: from n/a through 2.0.8.
CVE-2023-47547 1Wpfactory 1Products, Order & Customers Export For Woocommerce Nov 21, 2024 Nov 14, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WPFactory Products, Order & Customers Export for WooCommerce plugin <= 2.0.7 versions.