Opmc Woocommerce Dropshipping vulnerabilities
3 known vulnerabilities affecting opmc/woocommerce_dropshipping.
Total CVEs
3
CISA KEV
0
Public exploits
1
Exploited in wild
1
Severity breakdown
CRITICAL1MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2022-3481P1CRITICALCVSS 9.8ExploitedPoCfixed in 4.42022-11-07
CVE-2022-3481 [CRITICAL] CWE-89 CVE-2022-3481: The WooCommerce Dropshipping WordPress plugin before 4.4 does not properly sanitise and escape a par
The WooCommerce Dropshipping WordPress plugin before 4.4 does not properly sanitise and escape a parameter before using it in a SQL statement via a REST endpoint available to unauthenticated users, leading to a SQL injection
nvd
CVE-2024-35748P4MEDIUMCVSS 5.3≤ 5.0.4≥ n/a, ≤ 5.0.42024-06-09
CVE-2024-35748 [MEDIUM] CWE-862 CVE-2024-35748: Missing Authorization vulnerability in OPMC WooCommerce Dropshipping.This issue affects WooCommerce
Missing Authorization vulnerability in OPMC WooCommerce Dropshipping.This issue affects WooCommerce Dropshipping: from n/a through 5.0.4.
nvd
CVE-2026-49071MEDIUMCVSS 6.5≥ n/a, ≤ 5.2.42026-06-17
CVE-2026-49071 [MEDIUM] CWE-288 WordPress WooCommerce Dropshipping plugin <= 5.2.4 - Broken Authentication vulnerability
WordPress WooCommerce Dropshipping plugin <= 5.2.4 - Broken Authentication vulnerability
Unauthenticated Broken Authentication in WooCommerce Dropshipping <= 5.2.4 versions.
cvelistv5