VYPR

Invoice Payment For Woocommerce

by WordPress

Source repositories

CVEs (2)

  • CVE-2024-54328HigDec 13, 2024
    risk 0.46cvss 7.1epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in linknacional Invoice Payment for WooCommerce invoice-payment-for-woocommerce allows Reflected XSS.This issue affects Invoice Payment for WooCommerce: from n/a through <= 1.7.2.

  • CVE-2025-14971MedJan 27, 2026
    risk 0.34cvss 5.3epss 0.00

    The Link Invoice Payment for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the createPartialPayment and cancelPartialPayment functions in all versions up to, and including, 2.8.0. This makes it possible…