cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches foradvance-wc-analytics advance-wc-analytics

Direction: ascending
Jun 07, 2024

WooCommerce Google Analytics Integration By Advanced WC Analytics # d095e159647fd580437771b652b33a4f90ec168f

CVE, Research URL

d095e159647fd580437771b652b33a4f90ec168f

Home page URL

Security reports for WooCommerce Google Analytics Integration By Advanced WC Analytics

Application

WooCommerce Google Analytics Integration By Advanced WC Analytics

Date
Feb 28, 2022
Research Description
WooCommerce Google Analytics Integration By Advanced WC Analytics [advance-wc-analytics] < 3.0.1 WordPress Advanced WC Analytics – Google Analytics Dashboard for WooCommerce plugin < 3.0.0 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability discovered in WordPress Advanced WC Analytics – Google Analytics Dashboard for WooCommerce plugin (versions < 3.0.0).
Affected versions
max 3.0.1.
Status
vulnerable
Nov 16, 2024

WooCommerce Google Analytics Integration By Advanced WC Analytics # CVE-2022-4974

CVE, Research URL

CVE-2022-4974

Home page URL

Security reports for WooCommerce Google Analytics Integration By Advanced WC Analytics

Application

WooCommerce Google Analytics Integration By Advanced WC Analytics

Date
Oct 16, 2024
Research Description
The Freemius SDK, as used by hundreds of WordPress plugin and theme developers, was vulnerable to Cross-Site Request Forgery and Information disclosure due to missing capability checks and nonce protection on the _get_debug_log, _get_db_option, and the _set_db_option functions in versions up to, and including 2.4.2. Any WordPress plugin or theme running a version of Freemius less than 2.4.3 is vulnerable.
Affected versions
max 3.0.1.
Status
vulnerable
Feb 27, 2026

WooCommerce Google Analytics Integration By Advanced WC Analytics # CVE-2025-68032

CVE, Research URL

CVE-2025-68032

Home page URL

Security reports for WooCommerce Google Analytics Integration By Advanced WC Analytics

Application

WooCommerce Google Analytics Integration By Advanced WC Analytics

Date
Feb 20, 2026
Research Description
Missing Authorization vulnerability in Passionate Brains Advanced WC Analytics advance-wc-analytics allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Advanced WC Analytics: from n/a through <= 3.19.0.
Affected versions
max 3.19.0.
Status
vulnerable