VYPR

Wooodt Lite

by Byconsole

CVEs (2)

  • CVE-2023-47179HigJan 2, 2025
    risk 0.59cvss 8.8epss 0.01

    Missing Authorization vulnerability in mdalabar WooODT Lite byconsole-woo-order-delivery-time allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooODT Lite: from n/a through <= 2.4.6.

  • CVE-2024-13540MedFeb 18, 2025
    risk 0.34cvss 5.3epss 0.00

    The WooODT Lite – Delivery & pickup date time location for WooCommerce plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 2.5.1. This is due the /inc/bycwooodt_get_all_orders.php file being publicly accessible and generating a…