Advanced Local Pickup For Woocommerce

CVEs (3)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	Published	Description
CVE-2023-2841	WordPress Advanced Local Pickup For Woocommerce	Hig	0.47	7.2	0.01	Nov 22, 2023	The Advanced Local Pickup for WooCommerce plugin for WordPress is vulnerable to time-based SQL Injection via the id parameter in versions up to, and including, 1.5.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing…
CVE-2022-40702	Zorem Advanced Local Pickup For Woocommerce	Med	0.35	5.4	0.00	Jan 17, 2024	Missing Authorization vulnerability in Zorem Advanced Local Pickup for WooCommerce.This issue affects Advanced Local Pickup for WooCommerce: from n/a through 1.5.2.
CVE-2024-32814	Zorem Advanced Local Pickup For Woocommerce	Med	0.34	5.3	0.00	Jun 9, 2024	Missing Authorization vulnerability in Zorem Advanced Local Pickup for WooCommerce.This issue affects Advanced Local Pickup for WooCommerce: from n/a through 1.6.1.

CVE-2023-2841HigNov 22, 2023
WordPress
Advanced Local Pickup For Woocommerce
risk 0.47cvss 7.2epss 0.01
The Advanced Local Pickup for WooCommerce plugin for WordPress is vulnerable to time-based SQL Injection via the id parameter in versions up to, and including, 1.5.5 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing…
CVE-2022-40702MedJan 17, 2024
Zorem
Advanced Local Pickup For Woocommerce
risk 0.35cvss 5.4epss 0.00
Missing Authorization vulnerability in Zorem Advanced Local Pickup for WooCommerce.This issue affects Advanced Local Pickup for WooCommerce: from n/a through 1.5.2.
CVE-2024-32814MedJun 9, 2024
Zorem
Advanced Local Pickup For Woocommerce
risk 0.34cvss 5.3epss 0.00
Missing Authorization vulnerability in Zorem Advanced Local Pickup for WooCommerce.This issue affects Advanced Local Pickup for WooCommerce: from n/a through 1.6.1.