VYPR

Persian Woocommerce Sms

by WordPress

Source repositories

CVEs (5)

  • CVE-2025-49315HigJun 6, 2025
    risk 0.49cvss 7.6epss 0.00

    Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in PersianScript Persian Woocommerce SMS persian-woocommerce-sms allows SQL Injection.This issue affects Persian Woocommerce SMS: from n/a through <= 7.0.10.

  • CVE-2024-54312HigDec 13, 2024
    risk 0.46cvss 7.1epss 0.00

    Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in PersianScript Persian Woocommerce SMS persian-woocommerce-sms allows Reflected XSS.This issue affects Persian Woocommerce SMS: from n/a through <= 7.0.5.

  • CVE-2016-10987MedSep 17, 2019
    risk 0.40cvss 6.1epss 0.01

    The persian-woocommerce-sms plugin before 3.3.4 for WordPress has ps_sms_numbers XSS.

  • CVE-2024-10046MedDec 7, 2024
    risk 0.33cvss 6.1epss 0.00

    The افزونه پیامک ووکامرس Persian WooCommerce SMS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 7.0.5. This makes it possible…

  • CVE-2024-9213MedOct 17, 2024
    risk 0.33cvss 6.1epss 0.00

    The افزونه پیامک ووکامرس Persian WooCommerce SMS plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of remove_query_arg without appropriate escaping on the URL in all versions up to, and including, 7.0.2. This makes it possible…