Wisetr User Email Verification For Woocommerce — known CVE vulnerabilities
Every CVE whose affected-product data names Wisetr User Email Verification For Woocommerce, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2018-21007 — CVSS 9.8 (critical): The woo-confirmation-email plugin before 3.2.0 for WordPress has no blocking of direct access to supportive xl folders inside uploads.
CVE-2023-2781 — CVSS 8.1 (high): The User Email Verification for WooCommerce plugin for WordPress is vulnerable to authentication bypass via authenticate_user_by_email in…