WordPress Dokan Vulnerabilities

Wordpress Dokan vulnerabilities.

JSON RSS CSV 🔔 Create Alert Trigger

20 January 2026

Insecure Direct Object Reference in Dokan WooCommerce Plugin for WordPress
CVE-2025-14977
WordPressDokan: Ai Powered WooC...8.1HIGH

5 January 2026

Cross-site Scripting Vulnerability in Dokan Pro by WebDevStudios
CVE-2025-39497
WordPressDokan Pro6.5MEDIUM

16 December 2025

Data Exposure Vulnerability in Dokan Pro Plugin for WordPress
CVE-2025-12809
WordPressDokan Pro5.3MEDIUM

22 October 2025

Privilege Escalation Vulnerability in Dokan Lite by Dokan, Inc.
CVE-2025-53425
WordPressDokan7.6HIGH

26 August 2025

Privilege Escalation Vulnerability in Dokan Pro Plugin for WordPress
CVE-2025-5931
WordPressDokan Pro8.8HIGH

13 June 2024

SQL Injection Vulnerability in Dokan Pro Plugin Affects Sensitive Data
CVE-2024-3922
WordpressDokan ProEPSS 88%9.8CRITICAL

16 January 2024

Dokan < 3.6.4 - Vendor Stored Cross-Site Scripting
CVE-2022-3194
WordpressDokan👾🟡5.4MEDIUM

20 December 2023

WordPress Dokan Plugin <= 3.7.12 is vulnerable to SQL Injection
CVE-2023-26525
WordPressDokan – Best WooCommer...7.1HIGH

19 December 2023

WordPress Dokan Plugin <= 3.7.19 is vulnerable to PHP Object Injection
CVE-2023-34382
WordPressDokan – Best WooCommer...4.4MEDIUM

1 July 2023

Cross-Site Request Forgery in Dokan Plugin for WordPress
CVE-2020-36748
WordpressDokan – Best WooCommer...4.3MEDIUM

12 December 2022

Dokan < 3.7.6 - Unauthenticated SQLi
CVE-2022-3915
WordpressDokan👾🟡9.8CRITICAL