Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Visser Subscribe
Filtered by product Woocommerce Checkout Manager
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-11807 1 Visser 1 Woocommerce Checkout Manager 2020-08-24 6.4 MEDIUM 7.5 HIGH
The WooCommerce Checkout Manager plugin before 4.3 for WordPress allows media deletion via the wp-admin/admin-ajax.php?action=update_attachment_wccm wccm_default_keys_load parameter because of a nopriv_ registration and a lack of capabilities checks.