Return Refund and Exchange For WooCommerce

WP Swings

Developer

4.5.7

Latest version

5,000

Installations

No date

Last updated

WordPress Plugin

No VDP

Claim ownership

Report vulnerability

Vulnerabilities

Security Contributors

Vulnerability history

0 present

4 fixed

0 Mitigation rules

Insecure Direct Object Reference to Authenticated (Subscriber+) Refund Request Cancellation vulnerability
<= 4.5.5
3 hours ago
Insecure Direct Object Reference to Authenticated (Subscriber+) Arbitrary Order Message Read vulnerability
<= 4.5.5
Nov 21, 2025
Authenticated (Subscriber+) Insecure Direct Object Reference vulnerability
<= 4.4.5
Feb 13, 2025
Unauthenticated Sensitive Information Exposure Through Unprotected Directory vulnerability
<= 4.4.5
Feb 13, 2025