VYPR

Wooodt Lite

by WordPress

CVEs (2)

  • CVE-2024-13540MedFeb 18, 2025
    risk 0.34cvss 5.3epss 0.00

    The WooODT Lite – Delivery & pickup date time location for WooCommerce plugin for WordPress is vulnerable to Full Path Disclosure in all versions up to, and including, 2.5.1. This is due the /inc/bycwooodt_get_all_orders.php file being publicly accessible and generating a…

  • CVE-2023-45006Oct 17, 2023
    risk 0.00cvss epss 0.00

    Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in ByConsole WooODT Lite – WooCommerce Order Delivery or Pickup with Date Time Location plugin <= 2.4.6 versions.