Vulnerabilities and security researches forwc-category-showcase wc-category-showcase

Jun 06, 2024

CVE, Research URL: 667fdaf13fdec4b024da541ed2dc18942c8e265d
Home page URL: Security reports for Product Category Showcase for WooCommerce
Application: Product Category Showcase for WooCommerce
Date: Sep 04, 2023
Research Description: Product Category Showcase for WooCommerce [wc-category-showcase] < 2.0.0 WordPress Product Category Showcase for WooCommerce Plugin <= 1.1.9 is vulnerable to Cross Site Request Forgery (CSRF) No patched version is available. Lana Codes discovered and reported this Cross Site Request Forgery (CSRF) vulnerability in WordPress Product Category Showcase for WooCommerce Plugin. This could allow a malicious actor to force higher privileged users to execute unwanted actions under their current authentication. This vulnerability has not been known to be fixed yet.
Affected versions: max 2.0.0.
Status: vulnerable

Jun 13, 2026

CVE, Research URL: CVE-2022-47150
Home page URL: Security reports for Product Category Showcase for WooCommerce
Application: Product Category Showcase for WooCommerce
Date: Jun 11, 2026
Research Description: Cross-Site request forgery (CSRF) vulnerability in weDevs WooCommerce Conversion Tracking allows Cross Site Request Forgery. This issue affects WooCommerce Conversion Tracking: from n/a through 2.0.10.
Affected versions: max 2.0.0.
Status: vulnerable