VYPR

Points And Rewards For Woocommerce

by WordPress

Source repositories

CVEs (4)

  • CVE-2025-15260MedFeb 4, 2026
    risk 0.42cvss 6.5epss 0.00

    The MyRewards – Loyalty Points and Rewards for WooCommerce plugin for WordPress is vulnerable to missing authorization in all versions up to, and including, 5.6.1. This is due to the plugin not properly verifying that a user is authorized to perform an action in the 'ajax'…

  • CVE-2023-27608MedMar 25, 2024
    risk 0.42cvss 6.5epss 0.00

    Missing Authorization vulnerability in WP Swings Points and Rewards for WooCommerce.This issue affects Points and Rewards for WooCommerce: from n/a through 1.5.0.

  • CVE-2026-24581MedJan 23, 2026
    risk 0.35cvss 5.4epss 0.00

    Missing Authorization vulnerability in WP Swings Points and Rewards for WooCommerce points-and-rewards-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Points and Rewards for WooCommerce: from n/a through <= 2.9.5.

  • CVE-2023-27607MedApr 11, 2024
    risk 0.35cvss 5.4epss 0.00

    Missing Authorization vulnerability in WP Swings Points and Rewards for WooCommerce.This issue affects Points and Rewards for WooCommerce: from n/a through 1.5.0.