Enhanced E Commerce For Woocommerce Store

Source repositories

https://plugins.svn.wordpress.org/enhanced-e-commerce-for-woocommerce-store/

CVEs (5)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2024-29794	WordPress Enhanced E Commerce For Woocommerce Store	Hig	0.46	7.1	0.00	Mar 27, 2024	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Conversios Conversios.Io allows Reflected XSS.This issue affects Conversios.Io: from n/a through 6.9.1.
CVE-2025-62925	WordPress Enhanced E Commerce For Woocommerce Store	Med	0.35	5.4	0.00	Oct 27, 2025	Missing Authorization vulnerability in Conversios Conversios.io enhanced-e-commerce-for-woocommerce-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Conversios.io: from n/a through <= 7.2.13.
CVE-2023-51357	WordPress Enhanced E Commerce For Woocommerce Store	Med	0.34	5.3	0.00	Dec 9, 2024	Missing Authorization vulnerability in Conversios Conversios.io enhanced-e-commerce-for-woocommerce-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Conversios.io: from n/a through <= 6.5.0.
CVE-2024-6288	WordPress Enhanced E Commerce For Woocommerce Store	Med	0.31	4.7	0.03	Jun 28, 2024	The Conversios – Google Analytics 4 (GA4), Meta Pixel & more Via Google Tag Manager For WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tiktok_user_id’ parameter in all versions up to, and including, 7.1.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
CVE-2025-30909	WordPress Enhanced E Commerce For Woocommerce Store	Med	0.28	4.3	0.00	Mar 27, 2025	Missing Authorization vulnerability in Conversios Conversios.io enhanced-e-commerce-for-woocommerce-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Conversios.io: from n/a through <= 7.2.3.

CVE-2024-29794HigMar 27, 2024
WordPress
Enhanced E Commerce For Woocommerce Store
risk 0.46cvss 7.1epss 0.00
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Conversios Conversios.Io allows Reflected XSS.This issue affects Conversios.Io: from n/a through 6.9.1.
CVE-2025-62925MedOct 27, 2025
WordPress
Enhanced E Commerce For Woocommerce Store
risk 0.35cvss 5.4epss 0.00
Missing Authorization vulnerability in Conversios Conversios.io enhanced-e-commerce-for-woocommerce-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Conversios.io: from n/a through <= 7.2.13.
CVE-2023-51357MedDec 9, 2024
WordPress
Enhanced E Commerce For Woocommerce Store
risk 0.34cvss 5.3epss 0.00
Missing Authorization vulnerability in Conversios Conversios.io enhanced-e-commerce-for-woocommerce-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Conversios.io: from n/a through <= 6.5.0.
CVE-2024-6288MedJun 28, 2024
WordPress
Enhanced E Commerce For Woocommerce Store
risk 0.31cvss 4.7epss 0.03
The Conversios – Google Analytics 4 (GA4), Meta Pixel & more Via Google Tag Manager For WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the ‘tiktok_user_id’ parameter in all versions up to, and including, 7.1.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
CVE-2025-30909MedMar 27, 2025
WordPress
Enhanced E Commerce For Woocommerce Store
risk 0.28cvss 4.3epss 0.00
Missing Authorization vulnerability in Conversios Conversios.io enhanced-e-commerce-for-woocommerce-store allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Conversios.io: from n/a through <= 7.2.3.