SMS Alert Order Notifications

Cozy Vision

Developer

3.9.3

Latest version

4,000

Installations

No date

Last updated

WordPress Plugin

Active VDP

Report vulnerability

Vulnerabilities

Security Policy

Security Contributors

Vulnerability history

0 present

13 patched

7 Mitigation rules

Broken Access Control vulnerability
<= 3.9.0
18/02/2026
Broken Access Control vulnerability
<= 3.8.8
05/12/2025
SQL Injection vulnerability
<= 3.8.5
15/08/2025
Authenticated (Subscriber+) Privilege Escalation via handleWpLoginCreateUserAction Function vulnerability
<= 3.8.1
12/05/2025
Authenticated (Contributor+) Stored Cross-Site Scripting via sa_verify Shortcode vulnerability
<= 3.8.1
12/05/2025
SQL Injection Vulnerability
<= 3.8.1
08/05/2025
Unauthenticated Account Takeover/Privilege Escalation vulnerability
<= 3.7.9
01/04/2025
SQL Injection vulnerability
<= 3.7.8
02/03/2025
Reflected Cross Site Scripting (XSS) vulnerability
<= 3.7.8
23/02/2025
Missing Authorization to Authenticated (Subscriber+) Arbitrary Options Update vulnerability
<= 3.7.6
07/01/2025
WordPress SMSAlert - WooCommerce plugin <= 3.7.5 - Authenticated (Contributor+) Stored Cross-Site Scripting via sa_subscribe Shortcode vulnerability
<= 3.7.5
29/10/2024
Cross-Site Request Forgery vulnerability
<= 3.6.9
26/02/2024
Authenticated Cross-Site Scripting (XSS) vulnerability
<= 3.4.6
02/08/2021