Ithemes Manual Purchases — known CVE vulnerabilities
Every CVE whose affected-product data names Ithemes Manual Purchases, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (1)
CVE-2015-9371 — CVSS 6.1 (medium): Manual Purchases Add-on for iThemes Exchange before 1.1.0 for WordPress has XSS via add_query_arg() and remove_query_arg().