Vulnerabilities and security researches forepeken-all-kurir epeken-all-kurir

Apr 11, 2025

CVE, Research URL: CVE-2025-32673
Home page URL: Security reports for Epeken All Kurir Plugin for Woocommerce Full Version
Application: Epeken All Kurir Plugin for Woocommerce Full Version
Date: Apr 09, 2025
Research Description: Cross-Site Request Forgery (CSRF) vulnerability in epeken Epeken All Kurir allows Stored XSS. This issue affects Epeken All Kurir: from n/a through 1.4.6.2.
Affected versions: Min -, max -.
Status: vulnerable

Aug 30, 2025

CVE, Research URL: CVE-2025-58212
Home page URL: Security reports for Epeken All Kurir Plugin for Woocommerce Full Version
Application: Epeken All Kurir Plugin for Woocommerce Full Version
Date: Aug 27, 2025
Research Description: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') vulnerability in epeken Epeken All Kurir allows DOM-Based XSS. This issue affects Epeken All Kurir: from n/a through 2.0.1.
Affected versions: Min -, max -.
Status: vulnerable