VYPR

Woocommerce Checkout Cielo

by WordPress

CVEs (2)

  • CVE-2024-1718MedJun 4, 2024
    risk 0.34cvss 5.3epss 0.00

    The Claudio Sanches – Checkout Cielo for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to insufficient payment validation in the update_order_status() function in all versions up to, and including, 1.1.0. This makes it possible for…

  • CVE-2023-5325Nov 27, 2023
    risk 0.00cvss epss 0.00

    The Woocommerce Vietnam Checkout WordPress plugin before 2.0.6 does not escape the custom shipping phone field no the checkout form leading to XSS