Order Export For Woocommerce
Approved changes feed: RSS · Atom
cpe:2.3:a:webfactory:order_export_for_woocommerce:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | Webfactory (8800e04e-408e-5a5a-8de6-12fac17ad5b3) |
|---|---|
| Product | Order Export For Woocommerce (96f8b0c1-78c7-5bec-adbc-cdff140bf9d8) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2024-43259 |
vulnerable | 2026-06-03 14:56:44.836117 |
WordPress Order Export for WooCommerce plugin <= 3.23 - Sensitive Data Exposure vulnerability
MEDIUM (5.3)
Insertion of Sensitive Information Into Sent Data vulnerability in WebFactory Order Export for WooCommerce order-export-and-more-for-woocommerce.This issue affects Order Export for WooCommerce: from n/a through <= 3.23.
Published: 2024-08-26T20:13:24.582Z
Updated: 2026-04-28T16:10:11.209Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-13623 |
vulnerable | 2026-06-03 14:54:25.097324 |
Order Export for WooCommerce <= 3.24 - Unauthenticated Sensitive Information Exposure Through Unprotected Directory
MEDIUM (5.9)
The Order Export for WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.24 via the 'uploads' directory. This makes it possible for unauthenticated attackers to extract sensitive data stored insecurely in the /wp-content/uploads directory which can contain exported order information. The plugin is only vulnerable when 'Order data storage' is set to 'WordPress posts storage (legacy)', and cannot be exploited when the default option of 'High-performance order storage' is enabled.
Published: 2025-01-31T06:40:18.223Z
Updated: 2026-04-08T16:37:42.691Z |
Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.