CVE-2024-13525
- EPSS 0.09%
- Veröffentlicht 15.02.2025 09:15:08
- Zuletzt bearbeitet 24.02.2025 17:10:47
The Customer Email Verification for WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 2.9.4 via Shortcode. This makes it possible for authenticated attackers, with Contributor-level...
CVE-2024-13528
- EPSS 0.08%
- Veröffentlicht 12.02.2025 10:15:12
- Zuletzt bearbeitet 18.02.2025 18:53:58
The Customer Email Verification for WooCommerce plugin for WordPress is vulnerable to Authentication Bypass in all versions up to, and including, 2.9.5. This is due to the presence of a shortcode that will generate a confirmation link with a placehol...
CVE-2024-49305
- EPSS 0.26%
- Veröffentlicht 17.10.2024 18:15:13
- Zuletzt bearbeitet 18.10.2024 12:52:33
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPFactory Email Verification for WooCommerce allows SQL Injection.This issue affects Email Verification for WooCommerce: from n/a through 2.8.10.
CVE-2024-4185
- EPSS 0.24%
- Veröffentlicht 30.04.2024 09:15:07
- Zuletzt bearbeitet 21.11.2024 09:42:21
The Customer Email Verification for WooCommerce plugin for WordPress is vulnerable to Email Verification and Authentication Bypass in all versions up to, and including, 2.7.4 via the use of insufficiently random activation code. This makes it possibl...