Return Refund and Exchange For WooCommerce

WP Swings

Developer

4.6.1

Latest version

4,000

Installations

No date

Last updated

WordPress Plugin

No VDP

Claim ownership

Report vulnerability

Vulnerabilities

Security Contributors

Vulnerability history

0 present

4 patched

0 Mitigation rules

Insecure Direct Object Reference to Authenticated (Subscriber+) Refund Request Cancellation vulnerability
<= 4.5.5
31/12/2025
Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary Order Message Read vulnerability
<= 4.5.5
21/11/2025
Authenticated (Subscriber+) Insecure Direct Object Reference vulnerability
<= 4.4.5
13/02/2025
Unauthenticated Sensitive Information Exposure Through Unprotected Directory vulnerability
<= 4.4.5
13/02/2025