PeproDev WooCommerce Receipt Uploader

Source repositories

CVE	Vendor / Product	Sev	Risk	CVSS	EPSS	KEV	Published	Description
CVE-2025-24574	Pepro Dev. Group PeproDev WooCommerce Receipt Uploader	Hig	0.46	7.1	0.00		Feb 3, 2025	Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pepro Dev. Group PeproDev WooCommerce Receipt Uploader pepro-bacs-receipt-upload-for-woocommerce allows Reflected XSS.This issue affects PeproDev WooCommerce Receipt Uploader:…
CVE-2024-8873	Pepro Dev. Group PeproDev WooCommerce Receipt Uploader	Med	0.33	6.1	0.00		Nov 16, 2024	The PeproDev WooCommerce Receipt Uploader plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.6.9. This makes it possible for unauthenticated…

CVE-2025-24574HigFeb 3, 2025
Pepro Dev. Group
PeproDev WooCommerce Receipt Uploader
risk 0.46cvss 7.1epss 0.00
Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Pepro Dev. Group PeproDev WooCommerce Receipt Uploader pepro-bacs-receipt-upload-for-woocommerce allows Reflected XSS.This issue affects PeproDev WooCommerce Receipt Uploader:…
CVE-2024-8873MedNov 16, 2024
Pepro Dev. Group
PeproDev WooCommerce Receipt Uploader
risk 0.33cvss 6.1epss 0.00
The PeproDev WooCommerce Receipt Uploader plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.6.9. This makes it possible for unauthenticated…