VYPR

Woocommerce Checkout Manager

by WordPress

CVEs (3)

  • CVE-2023-47681MedJun 19, 2024
    risk 0.43cvss 6.5epss 0.09

    Missing Authorization vulnerability in QuadLayers WooCommerce Checkout Manager.This issue affects WooCommerce Checkout Manager: from n/a through 7.3.0.

  • CVE-2022-3490Nov 28, 2022
    risk 0.00cvss epss 0.01

    The Checkout Field Editor (Checkout Manager) for WooCommerce WordPress plugin before 1.8.0 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present

  • CVE-2019-11807May 6, 2019
    risk 0.00cvss epss 0.01

    The WooCommerce Checkout Manager plugin before 4.3 for WordPress allows media deletion via the wp-admin/admin-ajax.php?action=update_attachment_wccm wccm_default_keys_load parameter because of a nopriv_ registration and a lack of capabilities checks.