cleantalk
Vulnerabilities and Security Researches

Dokan – Best WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy, CVE-2022-3915

CVE, Research URL

CVE-2022-3915

Home page URL

Security reports for Dokan – Best WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy

Application

Dokan – Best WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy

Published on
Dec 12, 2022
Research Description
The Dokan WordPress plugin before 3.7.6 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by unauthenticated users
Affected versions
max 3.7.6.
Status
vulnerable
Previous vulnerability researches
Dokan – Best WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy (CVE-2025-53425) , Nov 10, 2025
Dokan – Best WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy (CVE-2022-3915) , Jun 07, 2024
Dokan – Best WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy (CVE-2020-36748) , Jun 07, 2024
Dokan – Best WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy (CVE-2023-34382) , Jun 07, 2024
Dokan – Best WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy (CVE-2022-3194) , Jun 07, 2024
New vulnerability
WP Statistics (CVE-2025-9816) , Nov 10, 2025
GenerateBlocks (CVE-2025-11879) , Nov 10, 2025
Schema & Structured Data for WP & AMP (CVE-2025-11502) , Nov 10, 2025
OOPSpam Anti-Spam (CVE-2025-12094) , Nov 10, 2025
Playerzbr (CVE-2025-11825) , Nov 10, 2025