Visser

visser

9 CVEs • 4 products

Products (4)

Click to collapse

Toggle

Store Exporter For Woocommerce

store_exporter_for_woocommerce

Store Toolkit For Woocommerce

store_toolkit_for_woocommerce

Woocommerce Checkout Manager

woocommerce_checkout_manager

Woocommerce Product Importer

woocommerce_-_product_importer

CVEs (9)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2024-8793 1Visser 1Store Exporter For Woocommerce Apr 8, 2026 Oct 1, 2024 N/A· v4 6.1 MEDIUM· v3 N/A· v2 The Store Exporter for WooCommerce – Export Products, Export Orders, Export Subscriptions, and More plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate...Show more The Store Exporter for WooCommerce – Export Products, Export Orders, Export Subscriptions, and More plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.7.2.1. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.Show less
CVE-2023-46822 1Visser 1Store Exporter For Woocommerce Apr 28, 2026 Nov 6, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 Unauth. Reflected Cross-Site Scripting') vulnerability in Visser Labs Store Exporter for WooCommerce – Export Products, Export Orders, Export Subscriptions, and More plugin <= 2.7.2 versions.
CVE-2022-1546 1Visser 1Woocommerce Product Importer Jun 17, 2026 Jul 11, 2022 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 The WooCommerce - Product Importer WordPress plugin through 1.5.2 does not sanitise and escape the imported data before outputting it back in the page, leading to a Reflected Cross-Site Scripting
CVE-2022-0149 1Visser 1Store Exporter For Woocommerce Jun 17, 2026 Feb 7, 2022 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 The WooCommerce Stored Exporter WordPress plugin before 2.7.1 was affected by a Reflected Cross-Site Scripting (XSS) vulnerability in the woo_ce admin page.
CVE-2021-25077 1Visser 1Store Toolkit For Woocommerce Jun 17, 2026 Feb 7, 2022 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 The Store Toolkit for WooCommerce WordPress plugin before 2.3.2 does not sanitise and escape the tab parameter before outputting it back in an admin page in an error message, leading to a Reflected Cross-Site Scripting
CVE-2016-10935 1Visser 1Store Exporter For Woocommerce Nov 21, 2024 Aug 27, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The woocommerce-exporter plugin before 1.8.4 for WordPress has privilege escalation.
CVE-2016-10923 1Visser 1Store Toolkit For Woocommerce Nov 21, 2024 Aug 22, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The woocommerce-store-toolkit plugin before 1.5.8 for WordPress has privilege escalation.
CVE-2016-10922 1Visser 1Store Toolkit For Woocommerce Nov 21, 2024 Aug 22, 2019 N/A· v4 9.8 CRITICAL· v3 7.5 HIGH· v2 The woocommerce-store-toolkit plugin before 1.5.7 for WordPress has privilege escalation.
CVE-2019-11807 1Visser 1Woocommerce Checkout Manager Jun 17, 2026 May 6, 2019 N/A· v4 7.5 HIGH· v3 6.4 MEDIUM· v2 The WooCommerce Checkout Manager plugin before 4.3 for WordPress allows media deletion via the wp-admin/admin-ajax.php?action=update_attachment_wccm wccm_default_keys_load parameter because of a nopriv_ registration and...Show more The WooCommerce Checkout Manager plugin before 4.3 for WordPress allows media deletion via the wp-admin/admin-ajax.php?action=update_attachment_wccm wccm_default_keys_load parameter because of a nopriv_ registration and a lack of capabilities checks.Show less