premmerce
Web & CMS Pluginscommercial
Latest CVEs
The 15 most recently published vulnerabilities affecting premmerce.
- CVE-2026-6933Premmerce Dev Tools <= 2.0 - Missing Authorization to Authenticated (Subscriber+) Remote Code Execution via Plugin Creation8.8
- CVE-2024-13362Freemius <= 2.10.1 - Reflected DOM-Based Cross-Site Scripting via url Parameter6.1
- CVE-2026-32541WordPress Premmerce Redirect Manager plugin <= 1.0.12 - Broken Access Control vulnerability6.5
- CVE-2026-0555Premmerce <= 1.3.20 - Authenticated (Subscriber+) Stored Cross-Site Scripting via 'premmerce_wizard_actions' AJAX Endpoint6.4
- CVE-2025-13369Premmerce WooCommerce Customers Manager <= 1.1.14 - Reflected Cross-Site Scripting6.1
- CVE-2025-13440Premmerce Wishlist for WooCommerce <= 1.1.10 - Missing Authorization to Authenticated (Subscriber+) Arbitrary Wishlist Deletion5.3
- CVE-2025-12783Premmerce Brands for WooCommerce <= 1.2.13 - Missing Authorization To Authenticated (Subscriber+) Brand Permalink Settings Update4.3
- CVE-2025-12411Premmerce Wholesale Pricing for WooCommerce <= 1.1.10 - Authenticated (Subscriber+) SQL Injection7.1
- CVE-2025-60241WordPress Premmerce plugin <= 1.3.19 - Local File Inclusion vulnerability7.5
- CVE-2025-60194WordPress Premmerce Product Search for WooCommerce plugin <= 2.2.4 - Local File Inclusion vulnerability7.5
- CVE-2025-60193WordPress Premmerce User Roles plugin <= 1.0.13 - Local File Inclusion vulnerability7.5
- CVE-2025-60192WordPress Premmerce Wholesale Pricing for WooCommerce plugin <= 1.1.10 - Local File Inclusion vulnerability7.5
- CVE-2025-60191WordPress Premmerce Wishlist for WooCommerce plugin <= 1.1.10 - Local File Inclusion vulnerability7.5
- CVE-2025-64291WordPress Premmerce User Roles plugin <= 1.0.13 - Cross Site Scripting (XSS) vulnerability5.9
- CVE-2025-64290WordPress Premmerce Product Search for WooCommerce plugin <= 2.2.4 - Cross Site Request Forgery (CSRF) vulnerability4.3