Vulnerabilities and security researches fordn-shipping-by-weight dn-shipping-by-weight

Dec 12, 2024

CVE, Research URL: CVE-2024-11842
Home page URL: Security reports for DN Shipping by Weight for WooCommerce
Application: DN Shipping by Weight for WooCommerce
Date: Dec 27, 2024
Research Description: The DN Shipping by Weight for WooCommerce WordPress plugin before 1.2 does not have CSRF check in place when updating its settings, which could allow attackers to make a logged in admin change them via a CSRF attack
Affected versions: max 1.2.
Status: vulnerable

Apr 17, 2025

CVE, Research URL: CVE-2025-32535
Home page URL: Security reports for DN Shipping by Weight for WooCommerce
Application: DN Shipping by Weight for WooCommerce
Date: -
Research Description: Shipping by Weight for WooCommerce [dn-shipping-by-weight] < 1.2.1 CVE-2025-32535
Affected versions: max 1.2.1.
Status: vulnerable