🧹It's time for some spring cleaning! All researchers earn over 6.25x our normal bounty rates, through May 27th, 2024, when Wordfence handles responsible disclosure for our Spring Cleaning Bug Extravaganza! Learn more about our bug bounty program
Register as a researcher and submit your vulnerabilities today!

Advanced Order Export For WooCommerce

Wordfence Intelligence > Vulnerability Database > WordPress Plugins > Advanced Order Export For WooCommerce

Information

Software Type	Plugin
Software Slug	woo-order-export-lite (view on wordpress.org)
Software Status	Active
Software Author	algolplus
Software Downloads	2,542,045
Software Active Installs	100,000
Software Record Last Updated	April 26, 2024

7 Vulnerabilities

Advanced Order Export For WooCommerce <= 3.4.4 - Authenticated (Shop Manager+) Remote Code Execution

9.1

CVE-2024-31266

Apr 5, 2024

Researcher: movrment

Advanced Order Export For WooCommerce <= 3.3.2 - Cross-Site Request Forgery

8.8

CVE-2022-40128

Oct 20, 2022

Researcher: István Márton

Advanced Order Export For WooCommerce <= 3.3.1 - Reflected Cross-Site Scripting

6.1

CVE-2022-35275

Aug 9, 2022

Researchers:

Advanced Order Export For WooCommerce <= 3.1.7 - Reflected Cross-Site Scripting

6.1

CVE-2021-24169

Mar 3, 2021

Researcher: 0xB9

Advanced Order Export for WooCommerce <= 3.1.7 - Cross-Site Scripting

6.4

CVE-2021-27349

Feb 22, 2021

Researchers:

Advanced Order Export for WooCommerce <= 3.1.3 - Cross-Site Scripting

6.1

CVE-2020-11727

Apr 8, 2020

Researcher: Jack Misiura

Advanced Order Export For WooCommerce <= 1.5.4 - CSV Injection

7.8

CVE-2018-11525

Jun 20, 2018

Researcher: Bhushan B. Patil

Title	CVE ID	CVSS	Researchers	Date
Advanced Order Export For WooCommerce <= 3.4.4 - Authenticated (Shop Manager+) Remote Code Execution	CVE-2024-31266	9.1	movrment	April 5, 2024
Advanced Order Export For WooCommerce <= 3.3.2 - Cross-Site Request Forgery	CVE-2022-40128	8.8	István Márton	October 20, 2022
Advanced Order Export For WooCommerce <= 3.3.1 - Reflected Cross-Site Scripting	CVE-2022-35275	6.1		August 9, 2022
Advanced Order Export For WooCommerce <= 3.1.7 - Reflected Cross-Site Scripting	CVE-2021-24169	6.1	0xB9	March 3, 2021
Advanced Order Export for WooCommerce <= 3.1.7 - Cross-Site Scripting	CVE-2021-27349	6.4		February 22, 2021
Advanced Order Export for WooCommerce <= 3.1.3 - Cross-Site Scripting	CVE-2020-11727	6.1	Jack Misiura	April 8, 2020
Advanced Order Export For WooCommerce <= 1.5.4 - CSV Injection	CVE-2018-11525	7.8	Bhushan B. Patil	June 20, 2018

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation