Vulnerabilities and security researches forcheckout-files-upload-woocommerce checkout-files-upload-woocommerce

Jun 07, 2024

CVE, Research URL: CVE-2022-29425
Home page URL: Security reports for Checkout Files Upload for WooCommerce
Application: Checkout Files Upload for WooCommerce
Date: May 21, 2022
Research Description: Cross-Site Scripting (XSS) vulnerability in WP Wham's Checkout Files Upload for WooCommerce plugin <= 2.1.2 at WordPress.
Affected versions: Min -, max -.
Status: vulnerable

Apr 18, 2025

CVE, Research URL: CVE-2025-39520
Home page URL: Security reports for Checkout Files Upload for WooCommerce
Application: Checkout Files Upload for WooCommerce
Date: Apr 16, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in WP Wham Checkout Files Upload for WooCommerce allows Stored XSS. This issue affects Checkout Files Upload for WooCommerce: from n/a through 2.2.0.
Affected versions: Min -, max -.
Status: vulnerable