VYPR

Woocommerce Superfaktura

by WordPress

CVEs (2)

  • CVE-2024-32803MedApr 24, 2024
    risk 0.42cvss 6.4epss 0.00

    Server-Side Request Forgery (SSRF) vulnerability in 2day.Sk, Webikon SuperFaktura WooCommerce.This issue affects SuperFaktura WooCommerce: from n/a through 1.40.3.

  • CVE-2024-1758MedFeb 26, 2024
    risk 0.35cvss 5.4epss 0.01

    The SuperFaktura WooCommerce plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 1.40.3 via the wc_sf_url_check function. This makes it possible for authenticated attackers, with subscriber-level access and above, to make web…