Skip to content

RadicalNotion.AI

We do not sell or share your personal information

© 2026 RadicalNotion.AI

Security Data

CWE Directory
CAPEC Directory
CNA Directory
CNA Report Cards
Data Sources

Calculators

CVSS Calculator
CVSS 4.0
CVSS 3.1
CVSS 3.0
CVSS 2.0

Platform

My Vulnerabilities
Insights
Notifications
Account
Pricing

Learn

All guides
What is a CVE?
What is CVSS?
The CISA KEV catalog
What is EPSS?

Company

About us
Blog
Book a demo

Get Started

Sign up
Log in

Legal

Privacy
Terms

Security data

Weaknesses (CWE)The MITRE CWE weakness catalog
Attack Patterns (CAPEC)MITRE CAPEC attack patterns
CNAsNumbering authorities + report cards
VendorsVulnerabilities by vendor

Tools

CVSS CalculatorScore CVSS 4.0, 3.1, 3.0 & 2.0

Resources

LearnPlain-English security guides
Data SourcesHow we source CVE data

About Us Blog Pricing Book a Demo

Log in

Home
Vendors
Woocommerce
Product Vendors

woocommerce Product Vendors Vulnerabilities: CVEs, CISA KEV & Security Advisories

4 CVEs

woocommerce Product Vendors Vulnerabilities

CVE security advisories and vulnerability history for Product Vendors by woocommerce.

4

Total CVEs

Published

0

In CISA KEV

Exploited in the wild

0

Public exploits

With known exploit

6.5

Avg CVSS

2023–2024

Last updated October 16, 2024

Overview

woocommerce Product Vendors has 4 published CVE records since 2023, of which 0 are in CISA's Known Exploited Vulnerabilities catalog and 0 have a known public exploit. The average CVSS base score across scored CVEs is 6.5.

This page aggregates every publicly disclosed vulnerability (CVE) affecting woocommerce Product Vendors, with a severity breakdown, the affected and patched versions, the most common weakness types, and the full CVE list.

Severity and exploitation

How the CVSS severity of woocommerce Product Vendors's CVEs breaks down, plus how many are exploited in the wild or have public exploit code.

Critical0

High2

Medium2

Low0

In CISA’s Known Exploited Vulnerabilities catalog

0

None of woocommerce Product Vendors's CVEs are currently listed in CISA's KEV catalog.

Public exploits

0

No woocommerce Product Vendors CVEs currently have a tracked public exploit.

Affected versions and CVEs

Browse every woocommerce Product Vendors version named in a CVE, then pick one to see only the CVEs that affect it.

Fixed in

> 2.1.761 CVE
> 2.1.781 CVE
2.0.361 CVE
2.1.771 CVE
2.1.791 CVE
2.2.21 CVE

Find a version

4 CVEs

Sort

Product Vendors <= 2.0.35 - Reflected Cross Site Scripting
CVE-2017-20193
Patch
CWE-79
Medium · CVSS 4.7
EPSS 1.7% (83th pct)2024-10-16
WordPress WooCommerce Product Vendors plugin <= 2.2.1 - Broken Access Control vulnerability
CVE-2023-51494
Patch
CWE-862
Medium · CVSS 5.3
EPSS 0.3% (50th pct)2024-06-09
WordPress WooCommerce Product Vendors Plugin <= 2.1.76 is vulnerable to SQL Injection
CVE-2023-33331
Patch
CWE-89
High · CVSS 8.5
EPSS 0.3% (58th pct)2023-12-18
WordPress WooCommerce Product Vendors Plugin <= 2.1.78 is vulnerable to SQL Injection
CVE-2023-35879
Patch
CWE-89
High · CVSS 7.6
EPSS 0.3% (55th pct)2023-10-31

Common weakness types

The CWE weakness categories most often found in woocommerce Product Vendors CVEs. Follow any weakness for its full explanation.

CWE-89Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')2 CVEs
CWE-79Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')1 CVE
CWE-862Missing Authorization1 CVE

Disclosure activity by year

How many woocommerce Product Vendors CVEs were published each year.

2023

2

2024

2

Other woocommerce products

Browse vulnerabilities for other products by woocommerce.

woocommerce18 CVEs AutomateWoo7 CVEs woocommerce_customers_manager5 CVEs Shipping Multiple Addresses4 CVEs woocommerce pre-orders4 CVEs WooCommerce Stripe Payment Gateway4 CVEs returns and warranty requests3 CVEs stripe payment gateway3 CVEs

All woocommerce vulnerabilities

Frequently asked questions

Common questions about woocommerce Product Vendors vulnerabilities.

How many CVEs does woocommerce Product Vendors have?

woocommerce Product Vendors has 4 published CVE records since 2023.

How many woocommerce Product Vendors CVEs are in CISA KEV?

None of woocommerce Product Vendors's CVEs are currently listed in CISA's Known Exploited Vulnerabilities catalog.

Are there public exploits for woocommerce Product Vendors vulnerabilities?

No woocommerce Product Vendors CVEs currently have a tracked public exploit in this dataset.

Which versions of woocommerce Product Vendors are affected?

6 distinct woocommerce Product Vendors versions are named across its CVEs. Use the version filter above to see the CVEs affecting a specific version.

What are the most common weakness types in woocommerce Product Vendors CVEs?

woocommerce Product Vendors's CVEs most often map to these CWE weakness types: CWE-89 (Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')), CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')), CWE-862 (Missing Authorization).

What is the average severity of woocommerce Product Vendors CVEs?

The average CVSS base score across woocommerce Product Vendors's scored CVEs is 6.5.

References

All woocommerce vulnerabilities
The MITRE CVE Program (opens in a new tab)
Learn: What is a CVE?
CWE directory: the weakness types these CVEs map to

Vulnerability data is sourced from the CVE Program; severity, KEV, and exploit signals are aggregated by RadicalNotion.AI.

Track woocommerce Product Vendors vulnerabilities

Monitor new woocommerce Product Vendors vulnerabilities as they are disclosed, with AI-written analysis and remediation guidance.

Start free See pricing

On this page

Overview
Severity and exploitation
Affected versions and CVEs
Common weakness types
Disclosure activity
Other products
FAQ
References