cleantalk
Vulnerabilities and Security Researches

AliExpress Dropshipping with AliNext Lite, CVE-2024-37213

CVE, Research URL

CVE-2024-37213

Home page URL

Security reports for AliExpress Dropshipping with AliNext Lite

Application

AliExpress Dropshipping with AliNext Lite

Published on
Jul 12, 2024
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Ali2Woo Team Ali2Woo Lite allows Cross-Site Scripting (XSS).This issue affects Ali2Woo Lite: from n/a through 3.3.9.
Affected versions
Min -, max 3.3.5.
Status
vulnerable
Previous vulnerability researches
AliExpress Dropshipping with AliNext Lite (CVE-2025-30859) , Apr 03, 2025
AliExpress Dropshipping with AliNext Lite (CVE-2024-37211) , Jun 24, 2024
AliExpress Dropshipping with AliNext Lite (CVE-2024-37212) , Jun 24, 2024
AliExpress Dropshipping with AliNext Lite (CVE-2024-37210) , Jun 24, 2024
AliExpress Dropshipping with AliNext Lite (CVE-2024-37213) , Jun 24, 2024
New vulnerability
Specia Companion (CVE-2025-32212) , Apr 11, 2025
Custom Posts Order (CVE-2025-32645) , Apr 11, 2025
Popping Content Light (CVE-2025-32115) , Apr 11, 2025
Social Crowd (CVE-2025-31390) , Apr 11, 2025
Review Stream (CVE-2025-32680) , Apr 11, 2025