Webtoffee Order Export & Order Import For Woocommerce
7 CVEs affecting Webtoffee Order Export & Order Import For Woocommerce. Latest disclosed: 2025-11-13. Critical: 0, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2024-22135 | High | 8.0 | 2024-01-24 | Unrestricted Upload of File with Dangerous Type vulnerability in WebToffee Order Export & Order Import for WooCommerce.This issue affects Order Export & Order… |
CVE-2024-13923 | High | 7.6 | 2025-03-20 | The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.6.0 v… |
CVE-2024-13921 | High | 7.2 | 2025-03-20 | The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.6.0 via dese… |
CVE-2024-13920 | Medium | 4.9 | 2025-03-20 | The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.6.0 via the d… |
CVE-2024-34751 | Medium | 4.4 | 2024-05-16 | Deserialization of Untrusted Data vulnerability in WebToffee Order Export & Order Import for WooCommerce.This issue affects Order Export & Order Import for Woo… |
CVE-2025-64382 | Medium | 4.3 | 2025-11-13 | Missing Authorization vulnerability in WebToffee Order Export & Order Import for WooCommerce order-import-export-for-woocommerce allows Exploiting Incorrectly… |
CVE-2024-13922 | Low | 2.7 | 2025-03-20 | The Order Export & Order Import for WooCommerce plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the a… |