Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
multidots vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2018-11485
The MULTIDOTS WooCommerce Quick Reports plugin 1.0.6 and previous versions for WordPress is vulnerable to Stored XSS. It allows an malicious user to inject malicious JavaScript code on the WooCommerce -> Orders admin page. The attack is possible by modifying the "referral...
Multidots Woocommerce Quick Reports
NA
CVE-2023-40212
Cross-Site Request Forgery (CSRF) vulnerability in theDotstore Product Attachment for WooCommerce plugin <= 2.1.8 versions.
Multidots Product Attachment For Woocommerce
NA
CVE-2023-39158
Cross-Site Request Forgery (CSRF) vulnerability in theDotstore Banner Management For WooCommerce plugin <= 2.4.2 versions.
Multidots Banner Management For Woocommerce
NA
CVE-2023-39159
Cross-Site Request Forgery (CSRF) vulnerability in theDotstore Fraud Prevention For Woocommerce plugin <= 2.1.5 versions.
Multidots Fraud Prevention For Woocommerce
4.3
CVSSv2
CVE-2018-11486
An issue exists in the MULTIDOTS Advance Search for WooCommerce plugin 1.0.9 and previous versions for WordPress. This plugin is vulnerable to a stored Cross-site scripting (XSS) vulnerability. A non-authenticated user can save the plugin settings and inject malicious JavaScript ...
Multidots Advance Search For Woocommerce
3.5
CVSSv2
CVE-2018-11580
An issue exists in mass-pages-posts-creator.php in the MULTIDOTS Mass Pages/Posts Creator plugin 1.2.2 for WordPress. Any logged in user can launch Mass Pages/Posts creation with custom content. There is no nonce or user capability check, so anyone can launch a DoS attack against...
Multidots Mass Pages\\/posts Creator 1.2.2
5
CVSSv2
CVE-2018-11579
class-woo-banner-management.php in the MULTIDOTS WooCommerce Category Banner Management plugin 1.1.0 for WordPress has an Unauthenticated Settings Change Vulnerability, related to certain wp_ajax_nopriv_ usage. Anyone can change the plugin's setting by simply sending a reque...
Multidots Woocommerce Category Banner Management 1.1.0
4.3
CVSSv2
CVE-2018-11633
An issue exists in the MULTIDOTS Woo Checkout for Digital Goods plugin 2.1 for WordPress. If an admin user can be tricked into visiting a crafted URL created by an attacker (via spear phishing/social engineering), the attacker can change the plugin settings. The function woo_chec...
Multidots Woo Checkout For Digital Goods 2.1
NA
CVE-2023-40561
Cross-Site Request Forgery (CSRF) vulnerability in theDotstore Enhanced Ecommerce Google Analytics for WooCommerce plugin <= 3.7.1 versions.
Multidots Enhanced Ecommerce Google Analytics For Woocommerce
NA
CVE-2023-40559
Cross-Site Request Forgery (CSRF) vulnerability in theDotstore Dynamic Pricing and Discount Rules for WooCommerce plugin <= 2.4.0 versions.
Multidots Dynamic Pricing And Discount Rules For Woocommerce
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
administrator privileges
CVE-2024-1579
hardcoded
CVE-2023-20198
CVE-2024-33587
CVE-2024-33449
CVE-2024-4308
HTML injection
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »