WordPress Point Vulnerabilities

Wordpress Point vulnerabilities.

JSON RSS CSV 🔔 Create Alert Trigger

19 May 2025

PHP Remote File Inclusion Vulnerability in FantasticPlugins SUMO Reward Points
CVE-2025-32925
WordPressSumo Reward Points8.3HIGH

5 March 2025

Stored Cross-Site Scripting in Point Maker Plugin for WordPress
CVE-2024-12815
WordPressPoint Maker6.4MEDIUM

15 February 2025

Sensitive Information Exposure in Oliver POS - WooCommerce Plugin by WordPress
CVE-2024-13513
WordPressOliver Pos – A WooComm...9.8CRITICAL

22 January 2025

2 January 2025

Cross-Site Request Forgery Vulnerability in Creativthemes Point Product
CVE-2024-37931
WordPressPoint4.3MEDIUM

25 December 2024

Privilege Escalation Vulnerability in WooCommerce Point of Sale Plugin for WordPress
CVE-2024-11281
WordpressWooCommerce Point Of Sale👾9.8CRITICAL

6 December 2024

Stored Cross-Site Scripting Vulnerability in myCred Plugin for WordPress and WooCommerce
CVE-2024-11201
WordpressMycred – Exclusive Pla...👾🟡6.4MEDIUM

19 November 2024

Unauthenticated Arbitrary Shortcode Execution Vulnerability in GamiPress Plugin
CVE-2024-11036
WordpressGamipress – The #1 Gam...9.8CRITICAL

9 November 2024

Gmap Point List Vulnerable to Stored XSS
CVE-2024-51594
WordPressGmap Point List5.4MEDIUM

8 November 2024

Stored Cross-Site Scripting Vulnerability in MyCred
CVE-2024-10187
WordpressMycred – Loyalty Point...5.4MEDIUM

25 October 2024

Authenticated Attackers Can Delete Plugin's API Key Due to Missing Capability Check
CVE-2024-9109
WordpressWooCommerce Ups Shippi...4.3MEDIUM

17 October 2024

Point Maker Includes Remote File Inclusion Vulnerability
CVE-2024-49317
WordPressPoint Maker7.5HIGH

16 October 2024

Freemius SDK Vulnerabilities Affect Hundreds of WordPress Plugins and Themes
CVE-2022-4974
WordpressYasr – Yet Another Sta...6.3MEDIUM

2 May 2024

Blind SQL Injection Vulnerability in Barcode Scanner and Inventory Manager for WordPress
CVE-2024-2661
WordpressBarcode Scanner And In...8.8HIGH

11 April 2024

Missing Authorization vulnerability in Points and Rewards for WooCommerce
CVE-2023-27607
WordPressPoints And Rewards For...5.4MEDIUM

10 April 2024

WooCommerce UPS Shipping Vulnerable to CSRF Attacks
CVE-2024-31944
WordPressWooCommerce Ups Shippi...4.3MEDIUM

9 April 2024

Stored Cross-Site Scripting Vulnerability in GamiPress Plugin for WordPress
CVE-2024-2783
WordpressGamipress – The #1 Gam...5.4MEDIUM

25 March 2024

Missing Authorization vulnerability in Points and Rewards for WooCommerce
CVE-2023-27608
WordPressPoints And Rewards For...6.5MEDIUM

20 March 2024

GamiPress Vulnerable to SQL Injection, Sensitive Information at Risk
CVE-2024-1799
WordpressGamipress – The #1 Gam...8.8HIGH

29 February 2024

Unauthorized Access Vulnerability in Oliver POS Plugin for WordPress
CVE-2024-0702
WordpressOliver POS – A WooComm...7.3HIGH

28 February 2024

Cross-Site Request Forgery Vulnerability in Oliver POS WooCommerce POS Plugin
CVE-2024-1954
WordpressOliver Pos – A WooComm...6.3MEDIUM

19 December 2023

WordPress GamiPress Plugin <= 2.5.6 is vulnerable to Broken Access Control
CVE-2023-25715
WordpressGamipress – The #1 Gam...5.4MEDIUM

30 November 2023

WordPress myCred Plugin <= 2.6.1 is vulnerable to Cross Site Scripting (XSS)
CVE-2023-47853
WordPressMycred – Points, Rewar...6.5MEDIUM