Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
woocommerce shipping multiple addresses vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2023-0865
The WooCommerce Multiple Customer Addresses & Shipping WordPress plugin prior to 21.7 does not ensure that the address to add/update/retrieve/delete and duplicate belong to the user making the request, or is from a high privilege users, allowing any authenticated users, such ...
Woocommerce Multiple Customer Addresses \\& Shipping Project Woocommerce Multiple Customer Addresses \\& Shipping
8.8
CVSSv3
CVE-2023-36514
Cross-Site Request Forgery (CSRF) vulnerability in WooCommerce Shipping Multiple Addresses plugin <= 3.8.5 versions.
Woocommerce Shipping Multiple Addresses
6.5
CVSSv3
CVE-2023-32799
Authorization Bypass Through User-Controlled Key vulnerability in WooCommerce Shipping Multiple Addresses.This issue affects Shipping Multiple Addresses: from n/a up to and including 3.8.3.
Woocommerce Shipping Multiple Addresses
6.1
CVSSv3
CVE-2023-37873
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in WooCommerce Shipping Multiple Addresses plugin <= 3.8.5 versions.
Woocommerce Shipping Multiple Addresses
9.8
CVSSv3
CVE-2022-0783
The Multiple Shipping Address Woocommerce WordPress plugin prior to 2.0 does not properly sanitise and escape numerous parameters before using them in SQL statements via some AJAX actions available to unauthenticated users, leading to unauthenticated SQL injections
Themehigh Multiple Shipping Addresses For Woocommerce
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started