cleantalk
Vulnerabilities and Security Researches

Vulnerabilities and security researches fororder-delivery-date-for-woocommerce order-delivery-date-for-woocommerce

Direction: ascending
Jun 07, 2024

Order Delivery Date for WooCommerce # 656765035598229327d39c4235279dfd63ef93e6

CVE, Research URL

656765035598229327d39c4235279dfd63ef93e6

Home page URL

Security reports for Order Delivery Date for WooCommerce

Application

Order Delivery Date for WooCommerce

Date
Aug 02, 2023
Research Description
Order Delivery Date for WooCommerce [order-delivery-date-for-woocommerce] < 3.20.1 Order Delivery Date for WooCommerce <= 3.20.0 - Reflected Cross-Site Scripting via 'orddd_lite_custom_startdate' and 'orddd_lite_custom_enddate' The Order Delivery Date for WooCommerce plugin for WordPress is vulnerable to Reflected Cross-Site Scripting via the 'orddd_lite_custom_startdate' and 'orddd_lite_custom_enddate' parameters in versions up to, and including, 3.20.0 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in pages that execute if they can successfully trick a user into performing an action such as clicking on a link.
Affected versions
max 3.20.1.
Status
vulnerable

Order Delivery Date for WooCommerce # CVE-2024-32434

CVE, Research URL

CVE-2024-32434

Home page URL

Security reports for Order Delivery Date for WooCommerce

Application

Order Delivery Date for WooCommerce

Date
Apr 15, 2024
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Tyche Softwares Order Delivery Date for WooCommerce.This issue affects Order Delivery Date for WooCommerce: from n/a through 3.20.2.
Affected versions
max 3.21.1.
Status
vulnerable

Order Delivery Date for WooCommerce # CVE-2023-41874

CVE, Research URL

CVE-2023-41874

Home page URL

Security reports for Order Delivery Date for WooCommerce

Application

Order Delivery Date for WooCommerce

Date
Sep 25, 2023
Research Description
Unauth. Reflected Cross-Site Scripting (XSS) vulnerability in Tyche Softwares Order Delivery Date for WooCommerce plugin <= 3.20.0 versions.
Affected versions
max 3.20.1.
Status
vulnerable
Sep 06, 2025

Order Delivery Date for WooCommerce # CVE-2025-58599

CVE, Research URL

CVE-2025-58599

Home page URL

Security reports for Order Delivery Date for WooCommerce

Application

Order Delivery Date for WooCommerce

Date
Sep 03, 2025
Research Description
Missing Authorization vulnerability in tychesoftwares Order Delivery Date for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Order Delivery Date for WooCommerce: from n/a through 4.1.0.
Affected versions
max 4.2.0.
Status
vulnerable
Jan 09, 2026

Order Delivery Date for WooCommerce # CVE-2025-63024

CVE, Research URL

CVE-2025-63024

Home page URL

Security reports for Order Delivery Date for WooCommerce

Application

Order Delivery Date for WooCommerce

Date
Dec 09, 2025
Research Description
Missing Authorization vulnerability in tychesoftwares Order Delivery Date for WooCommerce order-delivery-date-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Order Delivery Date for WooCommerce: from n/a through <= 4.3.1.
Affected versions
max 4.3.1.
Status
vulnerable