目标达成 感谢每一位支持者 — 我们达成了 100% 目标!

目标: 1000 元 · 已筹: 1000

100.0%
请我们喝杯咖啡

woocommerce 厂商漏洞列表 / CVE 中文分析 47

woocommerce 厂商相关 47 条 CVE 漏洞,含 AI 中文分析、POC、CVSS 评分与受影响产品。

WooCommerce 是 WordPress 生态中广泛使用的开源电商插件,核心用途为构建在线商店。其历史漏洞多集中于未授权访问、跨站脚本(XSS)及远程代码执行(RCE),常因输入验证不足或权限控制缺陷引发。截至最新统计,已收录 47 条 CVE,涉及敏感信息泄露与文件包含风险。开发者持续通过安全更新修复缺陷,建议用户保持版本最新并遵循最小权限原则以保障交易数据安全。

Top products by woocommerce: AutomateWoo WooCommerce Stripe Payment Gateway Product Vendors Shipping Multiple Addresses woocommerce WooCommerce Square WooCommerce Bookings Product Add-Ons WooCommerce Box Office WooCommerce Pre-Orders WooCommerce Follow-Up Emails (AutomateWoo) WooCommerce Brands woocommerce-gutenberg-products-block WooPayments: Integrated WooCommerce Payments Google for WooCommerce WooCommerce Smart Coupons WooCommerce One Page Checkout WooCommerce Shipping Per Product Canada Post Shipping Method GoCardless Woo Subscriptions WooCommerce Product Vendors Product Recommendations Bulk Stock Management WooCommerce PayPal Payments Composite Products WooCommerce Order Barcodes Returns and Warranty Requests
CVE ID标题CVSS风险等级Published
CVE-2026-1710 WordPress plugin WooPayments: Integrated WooCommerce Payments 授权问题漏洞 — WooPayments: Integrated WooCommerce PaymentsCWE-285 6.5 Medium2026-03-31
CVE-2025-13457 WordPress plugin WooCommerce Square 安全漏洞 — WooCommerce SquareCWE-639 7.5 High2026-01-10
CVE-2024-10486 WordPress plugin Google for WooCommerce 产品安全漏洞 — Google for WooCommerceCWE-862 5.3 Medium2024-11-18
CVE-2020-36841 WordPress plugin WooCommerce Smart Coupons 授权问题漏洞 — WooCommerce Smart CouponsCWE-285 5.3 Medium2024-10-16
CVE-2017-20193 WordPress plugin Product Vendors 跨站脚本漏洞 — Product VendorsCWE-79 4.7 Medium2024-10-16
CVE-2023-35049 WordPress plugin WooCommerce Stripe Payment Gateway 安全漏洞 — WooCommerce Stripe Payment GatewayCWE-862 7.5 High2024-06-19
CVE-2024-37297 WooCommerce 安全漏洞 — woocommerceCWE-79 5.4 Medium2024-06-12
CVE-2023-35881 WordPress plugin WooCommerce One Page Checkout 路径遍历漏洞 — WooCommerce One Page CheckoutCWE-22 7.6 High2024-05-17
CVE-2023-51499 WordPress Plugin Per Product Shipping 安全漏洞 — WooCommerce Shipping Per ProductCWE-862 4.3 Medium2024-04-12
CVE-2023-44999 WordPress Plugin WooCommerce Stripe Payment Gateway 跨站请求伪造漏洞 — WooCommerce Stripe Payment GatewayCWE-352 5.4 Medium2024-03-27
CVE-2024-24799 WordPress Plugin WooCommerce Box Office 安全漏洞 — WooCommerce Box OfficeCWE-862 6.5 Medium2024-03-26
CVE-2023-51502 WordPress Plugin WooCommerce Stripe Payment Gateway 安全漏洞 — WooCommerce Stripe Payment GatewayCWE-639 7.5 High2024-01-05
CVE-2023-32795 WordPress Plugin Product Add-Ons 代码问题漏洞 — Product Add-OnsCWE-502 8.2 High2023-12-28
CVE-2023-32799 WordPress plugin WooCommerce Ship to Multiple Addresses 安全漏洞 — Shipping Multiple AddressesCWE-639 6.5 Medium2023-12-21
CVE-2023-32747 WordPress plugin WooCommerce Bookings 安全漏洞 — WooCommerce BookingsCWE-639 5.4 Medium2023-12-21
CVE-2023-33318 WordPress Plugin Follow-Ups 代码问题漏洞 — AutomateWooCWE-434 9.9 Critical2023-12-20
CVE-2023-32743 WordPress Plugin AutomateWoo SQL注入漏洞 — AutomateWooCWE-89 7.6 High2023-12-20
CVE-2023-33330 WordPress Plugin Follow-Ups SQL注入漏洞 — AutomateWooCWE-89 8.5 High2023-12-20
CVE-2023-35914 WordPress Plugin Woo Subscriptions 安全漏洞 — Woo SubscriptionsCWE-639 7.5 High2023-12-20
CVE-2023-35876 WordPress Plugin WooCommerce Square 安全漏洞 — WooCommerce SquareCWE-639 8.1 High2023-12-20
CVE-2023-37871 WordPress Plugin GoCardless 安全漏洞 — GoCardlessCWE-639 8.2 High2023-12-20
CVE-2023-33331 WordPress Plugin Product Vendors SQL注入漏洞 — Product VendorsCWE-89 8.5 High2023-12-18
CVE-2023-47789 WordPress Plugin Canada Post Shipping Method 跨站请求伪造漏洞 — Canada Post Shipping MethodCWE-352 4.3 Medium2023-12-18
CVE-2023-47787 WordPress Plugin WooCommerce Bookings 跨站请求伪造漏洞 — WooCommerce BookingsCWE-352 4.3 Medium2023-12-18
CVE-2023-32744 WordPress Plugin Product Recommendations 安全漏洞 — Product RecommendationsCWE-352 5.4 Medium2023-11-09
CVE-2023-32745 WordPress Plugin AutomateWoo 安全漏洞 — AutomateWooCWE-352 5.4 Medium2023-11-09
CVE-2023-32794 WordPress Plugin Product Add-Ons 安全漏洞 — Product Add-OnsCWE-352 5.4 Medium2023-11-09
CVE-2023-35879 WordPress Plugin WooCommerce Product Vendors SQL注入漏洞 — Product VendorsCWE-89 7.6 High2023-10-31
CVE-2023-34004 WordPress plugin WooCommerce Box Office 跨站脚本漏洞 — WooCommerce Box OfficeCWE-79 6.5 Medium2023-08-30
CVE-2023-33317 WordPress plugin Returns and Warranty Requests 跨站脚本漏洞 — Returns and Warranty RequestsCWE-79 7.1 High2023-08-30

本页汇总了 woocommerce 厂商截至目前公开的全部 47 条 CVE 漏洞。每条漏洞均包含 CVSS 评分、CWE 弱点分类、受影响产品与参考链接,并附带 AI 生成的中文分析以便快速判断风险。