Vulnerabilities and security researches forsmart-woocommerce-search smart-woocommerce-search

Jun 07, 2024

CVE, Research URL: 1a7ecba5f0ebd3cbf97c8b8ca915de5b65f3b378
Home page URL: Security reports for Smart WooCommerce Search
Application: Smart WooCommerce Search
Date: Apr 18, 2023
Research Description: Smart WooCommerce Search [smart-woocommerce-search] < 2.5.1 WordPress Smart WooCommerce Search Plugin <= 2.5.0 is vulnerable to Broken Access Control No patched version available. Lana Codes discovered and reported this Broken Access Control vulnerability in WordPress Smart WooCommerce Search Plugin. This vulnerability has not been known to be fixed yet.
Affected versions: max 2.5.1.
Status: vulnerable

Jun 10, 2024

CVE, Research URL: CVE-2023-30783
Home page URL: Security reports for Smart WooCommerce Search
Application: Smart WooCommerce Search
Date: Dec 09, 2024
Research Description: Missing Authorization vulnerability in YummyWP Smart WooCommerce Search allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Smart WooCommerce Search: from n/a through 2.5.0.
Affected versions: max 2.5.1.
Status: vulnerable