Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

Lauri Karisola / WP Trio — Vulnerabilities & Security Advisories 4

Browse all 4 CVE security advisories affecting Lauri Karisola / WP Trio. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Lauri Karisola / WP Trio develops WordPress plugins for website functionality, with four CVEs recorded. Historically, vulnerabilities have included cross-site scripting (XSS) and remote code execution (RCE), often stemming from insufficient input validation and improper access controls. The plugins' security characteristics involve direct database interactions and user-generated content handling, which have led to past incidents where attackers could execute arbitrary code or steal session tokens. No major public breaches have been documented, but the consistent pattern of similar vulnerabilities suggests ongoing challenges in secure coding practices, particularly regarding privilege escalation and sanitization of user inputs.

Top products by Lauri Karisola / WP Trio: Conditional Shipping for WooCommerce Stock Sync for WooCommerce
CVE IDTitleCVSSSeverityPublished
CVE-2022-46807 WordPress Stock Sync for WooCommerce plugin <= 2.3.2 - Broken Access Control — Stock Sync for WooCommerceCWE-862 4.3 Medium2024-12-13
CVE-2023-31094 WordPress Stock Sync for WooCommerce Plugin <= 2.4.0 is vulnerable to Cross Site Scripting (XSS) — Stock Sync for WooCommerceCWE-79 7.1 High2023-08-18
CVE-2022-46805 WordPress Conditional Payments for WooCommerce Plugin <= 2.3.1 is vulnerable to Cross Site Request Forgery (CSRF) — Conditional Shipping for WooCommerceCWE-352 5.4 Medium2023-03-01
CVE-2022-46815 WordPress Conditional Shipping for WooCommerce Plugin <= 2.3.1 is vulnerable to Cross Site Request Forgery (CSRF) — Conditional Shipping for WooCommerceCWE-352 5.4 Medium2023-02-02

This page lists every published CVE security advisory associated with Lauri Karisola / WP Trio. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.