Known Vulnerabilities for Decorator by Webtoffee
Listed below are 1 of the newest known vulnerabilities associated with "Decorator" by "Webtoffee".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-40214 json | In OpenStack Cyborg before 16.0.1, the Accelerator Request (ARQ) API does not enforce project ownership at any layer. The pro... | Not Provided | 2026-05-07 | 2026-05-08 |
| CVE-2026-35490 json | changedetection.io is a free open source web page change detection tool. Prior to 0.54.8, the @login_optionally_required deco... | Not Provided | 2026-04-07 | 2026-04-09 |
| CVE-2026-33939 json | Handlebars provides the power necessary to let users build semantic templates. In versions 4.0.0 through 4.7.8, when a Handle... | Not Provided | 2026-03-27 | 2026-03-30 |
| CVE-2023-48284 json | Cross-Site Request Forgery (CSRF) vulnerability in WebToffee Decorator – WooCommerce Email Customizer allows Cross Site Req... | Not Provided | 2023-11-30 | 2026-04-28 |