Known Vulnerabilities for products from Zorem
Listed below are 5 of the newest known vulnerabilities associated with the vendor "Zorem".
These CVEs are retrieved based on exact matches on listed vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed vendor information are still displayed.
Data on known vulnerable products is also displayed based on information from known CPEs, each product links to its respective vulnerability page.
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2023-2841 json | The Advanced Local Pickup for WooCommerce plugin for WordPress is vulnerable to time-based SQL Injection via the id parameter... | Not Provided | 2023-11-22 | 2026-04-08 |
| CVE-2022-41635 json | Cross-Site Request Forgery (CSRF) vulnerability in Zorem Advanced Shipment Tracking for WooCommerce plugin <= 3.5.2 versions... | 8.8 - HIGH | 2023-05-25 | 2023-05-31 |
| CVE-2022-40702 json | Missing Authorization vulnerability in Zorem Advanced Local Pickup for WooCommerce.This issue affects Advanced Local Pickup f... | Not Provided | 2024-01-17 | 2026-04-28 |
| CVE-2022-38141 json | Missing Authorization vulnerability in Zorem Sales Report Email for WooCommerce.This issue affects Sales Report Email for Woo... | Not Provided | 2024-01-17 | 2026-04-28 |
| CVE-2021-4347 json | The function update_shipment_status_email_status_fun in the plugin Advanced Shipment Tracking for WooCommerce in versions up ... | Not Provided | 2023-06-07 | 2026-04-08 |