WPScan
How it worksPricing
Vulnerabilities
WordPressPluginsThemesStatsSubmit vulnerabilities
For developers
StatusAPI detailsCLI scanner
Contact

WordPress Plugin Vulnerabilities

MultiVendorX – MultiVendor Marketplace Solution For WooCommerce

2022-08-15
Multivendor Marketplace Solution for WooCommerce < 3.8.12 - Unauthenticated LFI
Fixed in version 3.8.12
2022-08-15
Multivendor Marketplace Solution for WooCommerce < 3.8.12 - Multiple Reflected Cross-Site Scripting
Fixed in version 3.8.12
2022-08-15
Multivendor Marketplace Solution for WooCommerce < 3.8.12 - Unauthorised AJAX Calls
Fixed in version 3.8.12
2021-12-06
Multivendor Marketplace Solution for WooCommerce < 3.8.4 - Reflected Cross-Site Scripting
Fixed in version 3.8.4
2021-06-08
CSRF Bypass in Multiple Plugins
Fixed in version 3.7.4
2021-05-26
Multivendor Marketplace Solution for WooCommerce < 3.7.4 - Unauthenticated Arbitrary Product Comment
Fixed in version 3.7.4
2020-09-16
Multiple Plugins/Themes - Cross-Site Request Forgery (CSRF)
Fixed in version 3.5.8