Cozyvision Sms Alert Order Notifications — known CVE vulnerabilities
Every CVE whose affected-product data names Cozyvision Sms Alert Order Notifications, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (10)
CVE-2024-13553 — CVSS 9.8 (critical): The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to privilege escalation via account takeover in all…
CVE-2025-26988 — CVSS 9.3 (critical): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozy Vision SMS Alert Order…
CVE-2025-47682 — CVSS 9.3 (critical): Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Cozy Vision SMS Alert Order…
CVE-2024-11725 — CVSS 8.8 (high): The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data that can lead to…
CVE-2025-3876 — CVSS 8.8 (high): The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to Privilege Escalation due to insufficient user OTP…
CVE-2025-26984 — CVSS 7.1 (high): Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in Cozy Vision SMS Alert Order…
CVE-2025-3878 — CVSS 6.4 (medium): The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's…
CVE-2024-10233 — CVSS 6.4 (medium): The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via the plugin's…
CVE-2021-24588 — CVSS 6.1 (medium): The SMS Alert Order Notifications WordPress plugin before 3.4.7 is affected by a cross site scripting (XSS) vulnerability in the plugin's…
CVE-2024-1489 — CVSS 4.3 (medium): The SMS Alert Order Notifications – WooCommerce plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to…