Wpwebelite Woocommerce Social Login — known CVE vulnerabilities
Every CVE whose affected-product data names Wpwebelite Woocommerce Social Login, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (9)
CVE-2024-7503 — CVSS 9.8 (critical): The WooCommerce - Social Login plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.7.5. This is…
CVE-2024-6636 — CVSS 9.8 (critical): The WooCommerce - Social Login plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on…
CVE-2024-5871 — CVSS 9.8 (critical): The WooCommerce - Social Login plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.6.2 via…
CVE-2024-10114 — CVSS 8.1 (high): The WooCommerce - Social Login plugin for WordPress is vulnerable to authentication bypass in all versions up to, and including, 2.7.7…
CVE-2024-6635 — CVSS 7.3 (high): The WooCommerce - Social Login plugin for WordPress is vulnerable to authentication bypass in versions up to, and including, 2.7.3. This is…
CVE-2024-6637 — CVSS 7.3 (high): The WooCommerce - Social Login plugin for WordPress is vulnerable to unauthenticated privilege escalation in all versions up to, and…
CVE-2024-5868 — CVSS 6.5 (medium): The WooCommerce - Social Login plugin for WordPress is vulnerable to Email Verification in all versions up to, and including, 2.6.2 via the…
CVE-2024-37502 — CVSS 5.4 (medium): Deserialization of Untrusted Data vulnerability in wpweb WooCommerce Social Login woo-social-login.This issue affects WooCommerce Social…
CVE-2025-39472 — CVSS 4.3 (medium): Cross-Site Request Forgery (CSRF) vulnerability in wpweb WooCommerce Social Login woo-social-login allows Cross Site Request Forgery.This…