Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
5.4
CVE-2023-32793
- EPSS 0.08%
- Published 30.08.2023 12:15:09
- Last modified 21.11.2024 08:04:02
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in WooCommerce WooCommerce Pre-Orders plugin <= 2.0.0 versions.
6.1
CVE-2023-32802
- EPSS 0.07%
- Published 30.08.2023 12:15:09
- Last modified 21.11.2024 08:04:03
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WooCommerce WooCommerce Pre-Orders plugin <= 1.9.0 versions.
6.5
CVE-2023-3507
- EPSS 0.07%
- Published 31.07.2023 10:15:10
- Last modified 23.04.2025 17:16:37
The WooCommerce Pre-Orders WordPress plugin before 2.0.3 has a flawed CSRF check when canceling pre-orders, which could allow attackers to make logged in admins cancel arbitrary pre-orders via a CSRF attack
6.5
CVE-2023-3508
- EPSS 0.07%
- Published 31.07.2023 10:15:10
- Last modified 23.04.2025 17:16:37
The WooCommerce Pre-Orders WordPress plugin before 2.0.3 has a flawed CSRF check when processing its tab actions, which could allow attackers to make logged in admins email pre-orders customer, change the released date, mark all pre-orders of a speci...
1