VYPR

Woocommerce Delivery Notes

by WordPress

Source repositories

CVEs (5)

  • CVE-2025-13773CriDec 24, 2025
    risk 0.57cvss 9.8epss 0.03

    The Print Invoice & Delivery Notes for WooCommerce plugin for WordPress is vulnerable to Remote Code Execution in all versions up to, and including, 5.8.0 via the 'WooCommerce_Delivery_Notes::update' function. This is due to missing capability check in the…

  • CVE-2023-0479MedJan 16, 2024
    risk 0.40cvss 6.1epss 0.01

    The Print Invoice & Delivery Notes for WooCommerce WordPress plugin before 4.7.2 is vulnerable to reflected XSS by echoing a GET value in an admin note within the WooCommerce orders page. This means that this vulnerability can be exploited for users with the…

  • CVE-2025-49239MedJun 6, 2025
    risk 0.35cvss 5.4epss 0.00

    Cross-Site Request Forgery (CSRF) vulnerability in tychesoftwares Print Invoice & Delivery Notes for WooCommerce woocommerce-delivery-notes allows Cross Site Request Forgery.This issue affects Print Invoice & Delivery Notes for WooCommerce: from n/a through <= 5.5.0.

  • CVE-2024-13640MedMar 8, 2025
    risk 0.31cvss 5.9epss 0.00

    The Print Invoice & Delivery Notes for WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 5.4.1 via the 'wcdn/invoice' directory. This makes it possible for unauthenticated attackers to extract sensitive data…

  • CVE-2024-12210MedDec 24, 2024
    risk 0.28cvss 4.3epss 0.00

    The Print Invoice & Delivery Notes for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'wcdn_remove_shoplogo' AJAX action in all versions up to, and including, 5.4.0. This makes it possible for…