VYPR

Conditional Payment Methods For Woocommerce

by WordPress

CVEs (2)

  • CVE-2022-4547HigJan 16, 2023
    risk 0.47cvss 7.2epss 0.01

    The Conditional Payment Methods for WooCommerce WordPress plugin through 1.0 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by [high privilege users such as admin|users with a role as low as admin.

  • CVE-2025-39563MedApr 16, 2025
    risk 0.42cvss 6.5epss 0.00

    Cross-Site Request Forgery (CSRF) vulnerability in WP Trio Conditional Payments for WooCommerce conditional-payments-for-woocommerce allows Cross Site Request Forgery.This issue affects Conditional Payments for WooCommerce: from n/a through <= 3.3.0.