← Back

Buy One Click Woocommerce

buy_one_click_woocommerce

Vendor: Zixn • 2 CVEs

CVEs (2)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
1Zixn
1Buy One Click Woocommerce
Jun 17, 2026
Nov 13, 2024
N/A· v4
4.3 MEDIUM· v3
N/A· v2
The Buy one click WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the buy_one_click_import_options AJAX action in all versions up to, and including...Show more
The Buy one click WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the buy_one_click_import_options AJAX action in all versions up to, and including, 2.2.9. This makes it possible for authenticated attackers, with Subscriber-level access and above, to import plugin settings.Show less
1Zixn
1Buy One Click Woocommerce
Jun 17, 2026
Nov 13, 2024
N/A· v4
4.3 MEDIUM· v3
N/A· v2
The Buy one click WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the removeorder AJAX action in all versions up to, and including, 2.2.9. This mak...Show more
The Buy one click WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the removeorder AJAX action in all versions up to, and including, 2.2.9. This makes it possible for authenticated attackers, with Subscriber-level access and above, to delete Buy one click WooCommerce orders.Show less