VYPR

Multivendor Marketplace Solution for WooCommerce

by WordPress

CVEs (1)

  • CVE-2022-2657MedSep 5, 2022
    risk 0.28cvss 4.3epss 0.00

    The Multivendor Marketplace Solution for WooCommerce WordPress plugin before 3.8.12 is lacking authorisation and CSRF in multiple AJAX actions, which could allow any authenticated users, such as subscriber to call them and suspend vendors (reporter by the submitter) or update…