Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
10 CRITICAL9 HIGH1 MEDIUM
CVE-2025-60243
CRITICAL CVSS 9.8
Find Similar
Incorrect Privilege Assignment vulnerability in Holest Engineering Selling Commander for WooCommerce selling-commander-connector allows Privilege Escalation.This issue affects Selling Commander for Wo
NVD RRF 0.016
CVE-2025-49924
HIGH CVSS 7.2
Find Similar
Incorrect Privilege Assignment vulnerability in Josh Kohlbach Wholesale Suite woocommerce-wholesale-prices allows Privilege Escalation.This issue affects Wholesale Suite: from n/a through <= 2.2.4.2.
NVD RRF 0.016
CVE-2026-27541
HIGH CVSS 7.2
Find Similar
Incorrect Privilege Assignment vulnerability in Josh Kohlbach Wholesale Suite woocommerce-wholesale-prices allows Privilege Escalation.This issue affects Wholesale Suite: from n/a through <= 2.2.6.
NVD RRF 0.016
CVE-2026-27542
CRITICAL CVSS 9.8
Find Similar
Incorrect Privilege Assignment vulnerability in Rymera Web Co Pty Ltd. Woocommerce Wholesale Lead Capture woocommerce-wholesale-lead-capture allows Privilege Escalation.This issue affects Woocommerce
NVD RRF 0.016
CVE-2025-48129
CRITICAL CVSS 9.8
Find Similar
Incorrect Privilege Assignment vulnerability in Holest Engineering Spreadsheet Price Changer for WooCommerce and WP E-commerce – Light excel-like-price-change-for-woocommerce-and-wp-e-commerce-light a
NVD RRF 0.015
CVE-2025-54697
HIGH CVSS 7.2
Find Similar
Incorrect Privilege Assignment vulnerability in StellarWP Kadence WooCommerce Email Designer kadence-woocommerce-email-designer allows Privilege Escalation.This issue affects Kadence WooCommerce Email
NVD RRF 0.015
CVE-2025-69378
HIGH CVSS 7.2
Find Similar
Incorrect Privilege Assignment vulnerability in XforWooCommerce Product Filter for WooCommerce prdctfltr allows Privilege Escalation.This issue affects Product Filter for WooCommerce: from n/a through
NVD RRF 0.015
CVE-2024-54383
CRITICAL CVSS 9.8
Find Similar
Incorrect Privilege Assignment vulnerability in wpweb WooCommerce PDF Vouchers woocommerce-pdf-vouchers allows Privilege Escalation.This issue affects WooCommerce PDF Vouchers: from n/a through < 4.9.
wpwebelite
NVD RRF 0.015
CVE-2025-49379
HIGH CVSS 7.2
Find Similar
Incorrect Privilege Assignment vulnerability in silverplugins217 Custom Fields Account Registration For Woocommerce custom-fields-account-registration-for-woocommerce allows Privilege Escalation.This
NVD RRF 0.014
CVE-2024-13343
HIGH CVSS 8.8
Find Similar
The WooCommerce Customers Manager plugin for WordPress is vulnerable to Privilege Escalation due to a missing capability check on the ajax_assign_new_roles() function in all versions up to, and includ
vanquish
NVD RRF 0.014
CVE-2026-23800
CRITICAL CVSS 10.0
Find Similar
Incorrect Privilege Assignment vulnerability in Modular DS modular-connector allows Privilege Escalation.This issue affects Modular DS: from 2.5.2 before 2.6.0.
NVD RRF 0.014
CVE-2025-60220
CRITICAL CVSS 9.8
Find Similar
Incorrect Privilege Assignment vulnerability in pebas CouponXxL couponxxl allows Privilege Escalation.This issue affects CouponXxL: from n/a through <= 3.0.0.
NVD RRF 0.014
CVE-2025-48128
MEDIUM CVSS 4.3
Find Similar
Missing Authorization vulnerability in Sharespine Sharespine Woocommerce Connector sharespine-woocommerce-connector allows Exploiting Incorrectly Configured Access Control Security Levels.This issue a
NVD RRF 0.014
CVE-2024-11281
CRITICAL CVSS 9.8
Find Similar
The WooCommerce Point of Sale plugin for WordPress is vulnerable to privilege escalation in all versions up to, and including, 6.1.0. This is due to insufficient validation on the 'logged_in_user_id'
NVD RRF 0.014
CVE-2026-23550
CRITICAL CVSS 9.8
Find Similar
Incorrect Privilege Assignment vulnerability in Modular DS Modular DS modular-connector allows Privilege Escalation.This issue affects Modular DS: from n/a through <= 2.5.1.
NVD RRF 0.013
CVE-2025-32695
CRITICAL CVSS 9.8
Find Similar
Incorrect Privilege Assignment vulnerability in Mestres do WP Checkout Mestres WP checkout-mestres-wp allows Privilege Escalation.This issue affects Checkout Mestres WP: from n/a through <= 8.7.5.
NVD RRF 0.013
CVE-2025-23528
HIGH CVSS 8.8
Find Similar
Incorrect Privilege Assignment vulnerability in Mosterd3d DD Roles dd-roles allows Privilege Escalation.This issue affects DD Roles: from n/a through <= 4.1.
NVD RRF 0.013
CVE-2025-69292
HIGH CVSS 8.8
Find Similar
Incorrect Privilege Assignment vulnerability in e-plugins WP Membership wp-membership allows Privilege Escalation.This issue affects WP Membership: from n/a through <= 1.6.4.
NVD RRF 0.013
CVE-2026-49060
CRITICAL CVSS 9.8
Find Similar
Incorrect Privilege Assignment vulnerability in Hippoo Mobile App for WooCommerce allows Privilege Escalation. This issue affects Hippoo Mobile App for WooCommerce: from n/a through 1.9.4.
NVD RRF 0.013
CVE-2024-50506
HIGH CVSS 8.8
Find Similar
Incorrect Privilege Assignment vulnerability in azexo Marketing Automation by AZEXO marketing-automation-by-azexo allows Privilege Escalation.This issue affects Marketing Automation by AZEXO: from n/a
NVD RRF 0.013
Page 1+ Next →