CVE-2022-40700 Vulnerability Analysis & Exploit Details

CVE-2022-40700 Vulnerability Summary

CVE-2022-40700: Server-Side Request Forgery (SSRF) vulnerability in Montonio Montonio for WooCommerce, Wpopal Wpopal Core Features, AMO for WP – Membership Management ArcStone wp-amo, Long Watch Studio WooVirtualWallet – A virtual wallet for WooCommerce, Long Watch Studio WooVIP – Membership plugin for WordPress and WooCommerce, Long Watch Studio WooSupply – Suppliers, Supply Orders and Stock Management, Squidesma Theme Minifier, Paul Clark Styles styles, Designmodo Inc. WordPress Page Builder – Qards, Philip M. Hofer (Frumph) PHPFreeChat, Arun Basil Lal Custom Login Admin Front-end CSS, Team Agence-Press CSS Adder By Agence-Press, Unihost Confirm Data, deano1987 AMP Toolbox amp-toolbox, Arun Basil Lal Admin CSS MU.This issue affects Montonio for WooCommerce: from n/a through 6.0.1; Wpopal Core Features: from n/a through 1.5.8; ArcStone: from n/a through 4.6.6; WooVirtualWallet – A virtual wallet for WooCommerce: from n/a through 2.2.1; WooVIP – Membership plugin for WordPress and WooCommerce: from n/a through 1.4.4; WooSupply – Suppliers, Supply Orders and Stock Management: from n/a through 1.2.2; Theme Minifier: from n/a through 2.0; Styles: from n/a through 1.2.3; WordPress Page Builder – Qards: from n/a through 1.0.5; PHPFreeChat: from n/a through 0.2.8; Custom Login Admin Front-end CSS: from n/a through 1.4.1; CSS Adder By Agence-Press: from n/a through 1.5.0; Confirm Data: from n/a through 1.0.7; AMP Toolbox: from n/a through 2.1.1; Admin CSS MU: from n/a through 2.6.

Exploit Prediction Scoring System (EPSS)

The EPSS score estimates the probability that this vulnerability will be exploited in the near future.

EPSS Score: 33.827% (probability of exploit)

EPSS Percentile: 97.19% (lower percentile = lower relative risk)
This vulnerability is less risky than approximately 2.8100000000000023% of others.

CVE-2022-40700 References

External References

• https://patchstack.com/database/vulnerability/admin-css-mu/wordpress-admin-css-mu-plugin-2-6-server-side-request-forgery-ssrf-vulnerability?_s_id=cve
• https://patchstack.com/database/vulnerability/amp-toolbox/wordpress-amp-toolbox-plugin-2-1-1-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/confirm-data/wordpress-confirm-data-plugin-1-0-7-unauth-server-side-request-forgery-ssrf-vulnerability?_s_id=cve
• https://patchstack.com/database/vulnerability/css-adder-by-agence-press/wordpress-css-adder-by-agene-press-plugin-1-5-0-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/custom-login-admin-front-end-css-with-multisite-support/wordpress-custom-login-admin-front-end-css-plugin-1-4-1-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/montonio-for-woocommerce/wordpress-montonio-for-woocommerce-plugin-6-0-1-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/phpfreechat/wordpress-phpfreechat-plugin-0-2-8-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/qards-free/wordpress-wordpress-page-builder-qards-plugin-1-0-5-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/styles/wordpress-styles-plugin-1-2-3-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/theme-minifier/wordpress-theme-minifier-plugin-2-0-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/woosupply/wordpress-woosupply-plugin-1-2-2-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/woovip/wordpress-woovip-plugin-1-4-4-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/woovirtualwallet/wordpress-woovirtualwallet-plugin-2-2-1-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/wp-amo/wordpress-amo-for-wp-plugin-4-6-6-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/wpopal-core-features/wordpress-wpopal-core-features-plugin-1-5-7-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/admin-css-mu/wordpress-admin-css-mu-plugin-2-6-server-side-request-forgery-ssrf-vulnerability?_s_id=cve
• https://patchstack.com/database/vulnerability/amp-toolbox/wordpress-amp-toolbox-plugin-2-1-1-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/confirm-data/wordpress-confirm-data-plugin-1-0-7-unauth-server-side-request-forgery-ssrf-vulnerability?_s_id=cve
• https://patchstack.com/database/vulnerability/css-adder-by-agence-press/wordpress-css-adder-by-agene-press-plugin-1-5-0-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/custom-login-admin-front-end-css-with-multisite-support/wordpress-custom-login-admin-front-end-css-plugin-1-4-1-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/montonio-for-woocommerce/wordpress-montonio-for-woocommerce-plugin-6-0-1-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/phpfreechat/wordpress-phpfreechat-plugin-0-2-8-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/qards-free/wordpress-wordpress-page-builder-qards-plugin-1-0-5-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/styles/wordpress-styles-plugin-1-2-3-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/theme-minifier/wordpress-theme-minifier-plugin-2-0-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/woosupply/wordpress-woosupply-plugin-1-2-2-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/woovip/wordpress-woovip-plugin-1-4-4-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/woovirtualwallet/wordpress-woovirtualwallet-plugin-2-2-1-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/wp-amo/wordpress-amo-for-wp-plugin-4-6-6-server-side-request-forgery-ssrf?_s_id=cve
• https://patchstack.com/database/vulnerability/wpopal-core-features/wordpress-wpopal-core-features-plugin-1-5-7-server-side-request-forgery-ssrf?_s_id=cve

CWE Common Weakness Enumeration

CAPEC Common Attack Pattern Enumeration and Classification

• Server Side Request Forgery CAPEC-664 An adversary exploits improper input validation by submitting maliciously crafted input to a target application running on a server, with the goal of forcing the server to make a request either to itself, to web services running in the server’s internal network, or to external third parties. If successful, the adversary’s request will be made with the server’s privilege level, bypassing its authentication controls. This ultimately allows the adversary to access sensitive data, execute commands on the server’s network, and make external requests with the stolen identity of the server. Server Side Request Forgery attacks differ from Cross Site Request Forgery attacks in that they target the server itself, whereas CSRF attacks exploit an insecure user authentication mechanism to perform unauthorized actions on the user's behalf.

Vulnerable Configurations

• cpe:2.3:a:millionclues:admin_css_mu:1.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:admin_css_mu:1.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:admin_css_mu:1.01:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:admin_css_mu:1.01:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:admin_css_mu:2.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:admin_css_mu:2.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:admin_css_mu:2.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:admin_css_mu:2.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:admin_css_mu:2.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:admin_css_mu:2.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:admin_css_mu:2.3:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:admin_css_mu:2.3:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:admin_css_mu:2.4:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:admin_css_mu:2.4:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:admin_css_mu:2.5:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:admin_css_mu:2.5:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:admin_css_mu:2.6:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:admin_css_mu:2.6:*:*:*:*:wordpress:*:*
• cpe:2.3:a:deano:amp_toolbox:-:*:*:*:*:wordpress:*:*
  cpe:2.3:a:deano:amp_toolbox:-:*:*:*:*:wordpress:*:*
• cpe:2.3:a:deano:amp_toolbox:2.1.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:deano:amp_toolbox:2.1.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:unihost:confirm_data:-:*:*:*:*:wordpress:*:*
  cpe:2.3:a:unihost:confirm_data:-:*:*:*:*:wordpress:*:*
• cpe:2.3:a:unihost:confirm_data:1.0.7:*:*:*:*:wordpress:*:*
  cpe:2.3:a:unihost:confirm_data:1.0.7:*:*:*:*:wordpress:*:*
• cpe:2.3:a:agence-press:css_adder:-:*:*:*:*:wordpress:*:*
  cpe:2.3:a:agence-press:css_adder:-:*:*:*:*:wordpress:*:*
• cpe:2.3:a:agence-press:css_adder:1.5.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:agence-press:css_adder:1.5.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:custom_login_admin_front-end_css:1.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:custom_login_admin_front-end_css:1.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:custom_login_admin_front-end_css:1.01:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:custom_login_admin_front-end_css:1.01:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:custom_login_admin_front-end_css:1.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:custom_login_admin_front-end_css:1.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:custom_login_admin_front-end_css:1.3:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:custom_login_admin_front-end_css:1.3:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:custom_login_admin_front-end_css:1.3.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:custom_login_admin_front-end_css:1.3.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:custom_login_admin_front-end_css:1.4:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:custom_login_admin_front-end_css:1.4:*:*:*:*:wordpress:*:*
• cpe:2.3:a:millionclues:custom_login_admin_front-end_css:1.4.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:millionclues:custom_login_admin_front-end_css:1.4.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.0.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.0.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.0.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.0.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.0.3:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.0.3:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.0.4:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.0.4:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.0.5:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.0.5:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.0.6:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.0.6:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.0.7:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.0.7:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.1.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.1.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.1.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.1.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.1.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.1.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.1.3:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.1.3:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.1.4:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.1.4:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.1.5:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.1.5:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.1.6:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.1.6:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.2.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.2.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:1.2.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:1.2.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:2.0.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:2.0.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:2.0.3:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:2.0.3:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:2.0.5:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:2.0.5:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:2.0.6:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:2.0.6:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:2.0.7:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:2.0.7:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:2.0.9:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:2.0.9:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:2.1.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:2.1.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:2.1.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:2.1.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:2.2.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:2.2.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:2.2.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:2.2.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:2.3.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:2.3.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:2.3.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:2.3.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:2.3.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:2.3.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:2.3.3:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:2.3.3:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.3:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.3:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.4:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.4:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.5:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.5:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.6:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.6:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.7:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.7:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.8:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.8:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.9:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:3.0.9:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.3:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.3:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.4:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.4:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.5:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.5:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.6:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.6:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.7:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.7:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.8:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.8:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.9:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.0.9:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.3:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.3:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.4:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.4:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.5:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.5:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.6:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.6:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.7:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.7:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.8:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.8:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.9:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.1.9:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.2.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.2.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.2.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.2.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:4.2.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:4.2.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.3:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.3:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.4:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.4:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.5:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.5:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.6:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.6:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.7:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:5.0.7:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:6.0.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:6.0.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:montonio:montonio_for_woocommerce:6.0.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:montonio:montonio_for_woocommerce:6.0.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:frumph:phpfreechat:-:*:*:*:*:wordpress:*:*
  cpe:2.3:a:frumph:phpfreechat:-:*:*:*:*:wordpress:*:*
• cpe:2.3:a:frumph:phpfreechat:0.2.8:*:*:*:*:wordpress:*:*
  cpe:2.3:a:frumph:phpfreechat:0.2.8:*:*:*:*:wordpress:*:*
• cpe:2.3:a:designmodo:qards:-:*:*:*:*:wordpress:*:*
  cpe:2.3:a:designmodo:qards:-:*:*:*:*:wordpress:*:*
• cpe:2.3:a:designmodo:qards:1.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:designmodo:qards:1.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woosupply:1.0.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woosupply:1.0.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woosupply:1.1.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woosupply:1.1.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woosupply:1.2.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woosupply:1.2.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woosupply:1.2.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woosupply:1.2.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woosupply:1.2.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woosupply:1.2.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.0.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.0.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.0.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.0.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.1.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.1.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.1.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.1.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.2.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.2.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.3.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.3.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.3.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.3.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.3.4:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.3.4:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.3.5:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.3.5:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.3.6:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.3.6:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.3.8:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.3.8:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.3.9:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.3.9:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.4.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.4.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.4.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.4.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.4.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.4.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovip:1.4.4:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovip:1.4.4:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovirtualwallet:1.0.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovirtualwallet:1.0.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovirtualwallet:2.0.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovirtualwallet:2.0.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovirtualwallet:2.0.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovirtualwallet:2.0.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovirtualwallet:2.0.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovirtualwallet:2.0.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovirtualwallet:2.1.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovirtualwallet:2.1.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovirtualwallet:2.1.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovirtualwallet:2.1.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovirtualwallet:2.1.2:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovirtualwallet:2.1.2:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovirtualwallet:2.2.0:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovirtualwallet:2.2.0:*:*:*:*:wordpress:*:*
• cpe:2.3:a:longwatchstudio:woovirtualwallet:2.2.1:*:*:*:*:wordpress:*:*
  cpe:2.3:a:longwatchstudio:woovirtualwallet:2.2.1:*:*:*:*:wordpress:*:*
• cpe:2.3:a:wpopal:wpopal_core_features:1.5.4:*:*:*:*:wordpress:*:*
  cpe:2.3:a:wpopal:wpopal_core_features:1.5.4:*:*:*:*:wordpress:*:*
• cpe:2.3:a:wpopal:wpopal_core_features:1.5.5:*:*:*:*:wordpress:*:*
  cpe:2.3:a:wpopal:wpopal_core_features:1.5.5:*:*:*:*:wordpress:*:*
• cpe:2.3:a:wpopal:wpopal_core_features:1.5.6:*:*:*:*:wordpress:*:*
  cpe:2.3:a:wpopal:wpopal_core_features:1.5.6:*:*:*:*:wordpress:*:*
• cpe:2.3:a:wpopal:wpopal_core_features:1.5.7:*:*:*:*:wordpress:*:*
  cpe:2.3:a:wpopal:wpopal_core_features:1.5.7:*:*:*:*:wordpress:*:*
• cpe:2.3:a:wpopal:wpopal_core_features:1.5.8:*:*:*:*:wordpress:*:*
  cpe:2.3:a:wpopal:wpopal_core_features:1.5.8:*:*:*:*:wordpress:*:*

Other 5 Recently Published CVEs Vulnerabilities

• CVE-2024-43107 – Improper Certificate Validation (CWE-295) in the Gallagher Milestone Integration Plugin (MIP) permits unauthenticated messages (e.g. alarm events) ...
• CVE-2024-41724 – Improper Certificate Validation (CWE-295) in the Gallagher Command Centre SALTO integration allowed an attacker to spoof the SALTO server. Thi...
• CVE-2025-2133 – A vulnerability classified as problematic was found in ftcms 2.1. Affected by this vulnerability is an unknown functionality of the file /admin/ind...
• CVE-2025-2132 – A vulnerability classified as critical has been found in ftcms 2.1. Affected is an unknown function of the file /admin/index.php/web/ajax_all_lists...
• CVE-2025-2131 – A vulnerability was found in dayrui XunRuiCMS up to 4.6.3. It has been rated as problematic. This issue affects some unknown processing of the comp...