VYPR

Woocommerce Store Toolkit

by WordPress

Source repositories

CVEs (4)

  • CVE-2025-60204HigNov 6, 2025
    risk 0.49cvss 7.5epss 0.00

    Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in Josh Kohlbach WooCommerce Store Toolkit woocommerce-store-toolkit allows PHP Local File Inclusion.This issue affects WooCommerce Store Toolkit: from n/a…

  • CVE-2021-25077Feb 7, 2022
    risk 0.00cvss epss 0.01

    The Store Toolkit for WooCommerce WordPress plugin before 2.3.2 does not sanitise and escape the tab parameter before outputting it back in an admin page in an error message, leading to a Reflected Cross-Site Scripting

  • CVE-2016-10923Aug 22, 2019
    risk 0.00cvss epss 0.02

    The woocommerce-store-toolkit plugin before 1.5.8 for WordPress has privilege escalation.

  • CVE-2016-10922Aug 22, 2019
    risk 0.00cvss epss 0.02

    The woocommerce-store-toolkit plugin before 1.5.7 for WordPress has privilege escalation.