cleantalk
Vulnerabilities and Security Researches

Order Tracking – WordPress Status Tracking Plugin, 0f8e0ae795486b0420f4812986aa8158cc3e041c

CVE, Research URL

0f8e0ae795486b0420f4812986aa8158cc3e041c

Home page URL

Security reports for Order Tracking – WordPress Status Tracking Plugin

Application

Order Tracking – WordPress Status Tracking Plugin

Published on
Jan 06, 2022
Research Description
Order Tracking &#8211; WordPress Status Tracking Plugin [order-tracking] < 3.0.17 (closed) WordPress Order Tracking plugin <= 3.0.16 - Cross-Site Request Forgery (CSRF) leading to Order, Customer and Sales Representative Deletion Cross-Site Request Forgery (CSRF) leading to Order, Customer and Sales Representative Deletion discovered in WordPress Order Tracking plugin (versions <= 3.0.16).
Affected versions
max 3.0.17.
Status
vulnerable
Previous vulnerability researches
MIMO Woocommerce Order Tracking (CVE-2024-5769) , Jan 10, 2025
MIMO Woocommerce Order Tracking (CVE-2024-5768) , Jun 20, 2024
Order Tracking &#8211; WordPress Status Tracking Plugin (CVE-2024-43343) , Aug 20, 2024
Order Tracking &#8211; WordPress Status Tracking Plugin (CVE-2026-39602) , Apr 13, 2026
Order Tracking &#8211; WordPress Status Tracking Plugin (0f8e0ae795486b0420f4812986aa8158cc3e041c) , Jun 07, 2024
New vulnerability
Spreadsheet Integration – Automate Google Sheets With WordPress, WooCommerce &amp; Most Popular Form Plugins. Also, Display G (CVE-2026-1916) , Apr 15, 2026
s2Member – Best Membership Plugin for All Kinds of Memberships, Content Restriction Paywalls &amp; Member Access Subscription (CVE-2026-1994) , Apr 15, 2026
Team Section block &#8211; Showcase team members in various layouts and designs. (CVE-2026-0833) , Apr 15, 2026
Orbisius Random Name Generator (CVE-2026-1893) , Apr 15, 2026
User Language Switch (CVE-2026-0745) , Apr 15, 2026