WooCommerce

Unauthenticated HTML Injection vulnerability <= 9.0.2

5.3

15 October, 2024

Cross Site Scripting (XSS) vulnerability <= 9.1.2

5.9

16 August, 2024

Content Injection vulnerability <= 8.9.2

3.5

27 June, 2024

Reflected Cross Site Scripting (XSS) vulnerability <= 8.9.2

7.1

11 June, 2024

Contributor+ Private/Draft Products Access vulnerability < 8.6

4.3

15 April, 2024