cleantalk
Vulnerabilities and Security Researches

ClimateClick: Climate Action for all, 955f025133b922a487e0a6e423bf69d7d23ce9a0

CVE, Research URL

955f025133b922a487e0a6e423bf69d7d23ce9a0

Home page URL

Security reports for ClimateClick: Climate Action for all

Application

ClimateClick: Climate Action for all

Published on
Feb 28, 2022
Research Description
ClimateClick: Climate Action for all [co2ok-for-woocommerce] <= 1.0.9.21 (unfixed) WordPress CO2ok: carbon offsetting for e-commerce plugin <= 1.0.9.21 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability discovered in WordPress CO2ok: carbon offsetting for e-commerce plugin (versions <= 1.0.9.21).
Affected versions
max 1.0.9.21.
Status
vulnerable
Previous vulnerability researches
ClimateClick: Climate Action for all (955f025133b922a487e0a6e423bf69d7d23ce9a0) , Jun 07, 2024
New vulnerability
Security & Malware scan by CleanTalk , Apr 03, 2026
OOPSpam Anti-Spam (CVE-2026-32544) , Mar 31, 2026
NotificationX &#8211; Best FOMO, Social Proof, WooCommerce Sales Popup &amp; Notification Bar Plugin With Elementor (CVE-2026-27042) , Mar 31, 2026
The Conference (CVE-2026-32335) , Mar 31, 2026
WP Booking System &#8211; Booking Calendar (CVE-2025-68515) , Mar 31, 2026