GCVE - cpe:2.3:a:vanquish:woocommerce_orders_&_customers

Approved changes feed: RSS · Atom

cpe:2.3:a:vanquish:woocommerce_orders_&_customers_exporter:*:*:*:*:*:*:*:*

part: a version: * update: *

Vendor	Vanquish (`8620c3b2-dad5-5ecd-8e4b-640ea6b8f386`)
Product	Woocommerce Orders & Customers Exporter (`b5444d21-c28b-5c73-9d15-25699eb3f3a9`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2025-53424`	vulnerable	2026-06-08 07:31:14.521082	WordPress WooCommerce Orders & Customers Exporter plugin <= 5.4 - Broken Access Control vulnerability MEDIUM (6.5) Missing Authorization vulnerability in vanquish WooCommerce Orders & Customers Exporter woocommerce-orders-ei allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce Orders & Customers Exporter: from n/a through <= 5.4. Published: 2025-10-22T14:32:33.353Z Updated: 2026-04-28T16:13:24.490Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/woocommerce-orders-ei/vulnerability/wordpress-woocommerce-orders-customers-exporter-plugin-5-4-broken-access-control-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-48331`	vulnerable	2026-06-08 07:27:15.707437	WordPress WooCommerce Orders & Customers Exporter <= 5.0 - Sensitive Data Exposure Vulnerability HIGH (7.5) Insertion of Sensitive Information Into Sent Data vulnerability in vanquish WooCommerce Orders & Customers Exporter woocommerce-orders-customers-exporter allows Retrieve Embedded Sensitive Data.This issue affects WooCommerce Orders & Customers Exporter: from n/a through <= 5.0. Published: 2025-05-30T14:01:38.968Z Updated: 2026-04-28T16:12:56.597Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/woocommerce-orders-customers-exporter/vulnerability/wordpress-woocommerce-orders-customers-exporter-5-0-sensitive-data-exposure-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2025-22713`	vulnerable	2026-06-08 07:10:54.665433	WordPress WooCommerce Orders & Customers Exporter plugin <= 5.4 - SQL Injection vulnerability HIGH (8.5) Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in vanquish WooCommerce Orders & Customers Exporter woocommerce-orders-ei allows SQL Injection.This issue affects WooCommerce Orders & Customers Exporter: from n/a through <= 5.4. Published: 2026-01-08T09:17:39.375Z Updated: 2026-04-28T16:11:05.429Z Open on db.gcve.eu Reference links https://patchstack.com/database/Wordpress/Plugin/woocommerce-orders-ei/vulnerability/wordpress-woocommerce-orders-customers-exporter-plugin-5-4-sql-injection-vulnerability?_s_id=cve	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.

Woocommerce Orders & Customers Exporter

PURL mappings

Vulnerability references

Contribute