Wp3sixty ≫ Woo Custom Emails

3 vulnerabilities found.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.

7.3

CVE-2023-32507

EPSS 0.14%
Published 13.12.2024 15:15:11
Last modified 13.12.2024 15:15:11

Missing Authorization vulnerability in wp3sixty Woo Custom Emails allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Woo Custom Emails: from n/a through 2.2.

6.1

CVE-2023-45004

EPSS 0.09%
Published 17.10.2023 12:15:10
Last modified 21.11.2024 08:26:13

Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in wp3sixty Woo Custom Emails plugin <= 2.2 versions.

6.1

CVE-2023-4315

EPSS 0.6%
Published 31.08.2023 06:15:11
Last modified 21.11.2024 08:34:50

The Woo Custom Emails for WordPress is vulnerable to Reflected Cross-Site Scripting via the wcemails_edit parameter in versions up to, and including, 2.2 due to insufficient input sanitization and output escaping. This makes it possible for unauthent...