Vendor

Xfinitysoft

Products

CVEs

Across products

Status

Private

Products

CVE	Vendor / Product	Sev	Risk	CVSS	Published	Description
CVE-2024-32675	Xfinitysoft Order Limit for WooCommerce	Med	0.42	6.5	Apr 24, 2024	Missing Authorization vulnerability in Xfinity Soft Order Limit for WooCommerce.This issue affects Order Limit for WooCommerce: from n/a through 2.0.0.
CVE-2025-54042	Xfinitysoft WP Post Hide	Med	0.28	4.3	Jul 16, 2025	Cross-Site Request Forgery (CSRF) vulnerability in Xfinitysoft WP Post Hide wp-post-hide allows Cross Site Request Forgery.This issue affects WP Post Hide: from n/a through <= 1.0.9.
CVE-2025-26928	Xfinitysoft Order Limit for WooCommerce	Med	0.28	4.3	Feb 25, 2025	Missing Authorization vulnerability in Xfinitysoft Order Limit for WooCommerce wc-order-limit-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Order Limit for WooCommerce: from n/a through <= 3.0.2.
CVE-2025-22681	Xfinitysoft Content Cloner	Med	0.28	4.3	Feb 3, 2025	Missing Authorization vulnerability in Xfinitysoft Content Cloner super-seo-content-cloner allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Content Cloner: from n/a through <= 1.0.1.
CVE-2023-34378	Xfinitysoft WP Post Hide		0.00	—	Nov 13, 2023	Cross-Site Request Forgery (CSRF) vulnerability in scriptburn.Com WP Hide Post plugin <= 2.0.10 versions.

CVE-2024-32675MedApr 24, 2024
Xfinitysoft
Order Limit for WooCommerce
risk 0.42cvss 6.5epss 0.00
Missing Authorization vulnerability in Xfinity Soft Order Limit for WooCommerce.This issue affects Order Limit for WooCommerce: from n/a through 2.0.0.
CVE-2025-54042MedJul 16, 2025
Xfinitysoft
WP Post Hide
risk 0.28cvss 4.3epss 0.00
Cross-Site Request Forgery (CSRF) vulnerability in Xfinitysoft WP Post Hide wp-post-hide allows Cross Site Request Forgery.This issue affects WP Post Hide: from n/a through <= 1.0.9.
CVE-2025-26928MedFeb 25, 2025
Xfinitysoft
Order Limit for WooCommerce
risk 0.28cvss 4.3epss 0.00
Missing Authorization vulnerability in Xfinitysoft Order Limit for WooCommerce wc-order-limit-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Order Limit for WooCommerce: from n/a through <= 3.0.2.
CVE-2025-22681MedFeb 3, 2025
Xfinitysoft
Content Cloner
risk 0.28cvss 4.3epss 0.00
Missing Authorization vulnerability in Xfinitysoft Content Cloner super-seo-content-cloner allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Content Cloner: from n/a through <= 1.0.1.
CVE-2023-34378Nov 13, 2023
Xfinitysoft
WP Post Hide
risk 0.00cvss —epss 0.00
Cross-Site Request Forgery (CSRF) vulnerability in scriptburn.Com WP Hide Post plugin <= 2.0.10 versions.