SMS Alert Order Notifications – WooCommerce

CVEs (2)

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2024-13553	SMS Alert SMS Alert Order Notifications – WooCommerce		0.00	—	0.00		Apr 1, 2025	The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.7.9. This is due to the plugin using the Host header to determine if the plugin is in a playground…
CVE-2024-11725	SMS Alert SMS Alert Order Notifications – WooCommerce		0.00	—	0.01		Jan 7, 2025	The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the updateWcWarrantySettings() function in all versions up to, and including,…

CVE-2024-13553Apr 1, 2025
SMS Alert
SMS Alert Order Notifications – WooCommerce
risk 0.00cvss —epss 0.00
The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to privilege escalation via account takeover in all versions up to, and including, 3.7.9. This is due to the plugin using the Host header to determine if the plugin is in a playground…
CVE-2024-11725Jan 7, 2025
SMS Alert
SMS Alert Order Notifications – WooCommerce
risk 0.00cvss —epss 0.01
The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data that can lead to privilege escalation due to a missing capability check on the updateWcWarrantySettings() function in all versions up to, and including,…