🎉Wordfence just launched its bug bounty program. Over the next 6 months, all awarded bounties receive a 10% bonus. Register as a researcher and submit your vulnerabilities today!

As a reminder, the Wordfence Intelligence Vulnerability Database API is completely free to query and utilize, both personally and commercially, and contains all the same vulnerability data as the user interface. Please review the API documentation and Webhook documentation for more information on how to query the vulnerability API endpoints and configure webhooks utilizing all the same data present in the Wordfence Intelligence user interface.

Store Exporter for WooCommerce – Export Products, Export Orders, Export Subscriptions, and More

Wordfence Intelligence > Vulnerability Database > WordPress Plugins > Store Exporter for WooCommerce – Export Products, Export Orders, Export Subscriptions, and More

Information

Software Type	Plugin
Software Slug	woocommerce-exporter (view on wordpress.org)
Software Status	Active
Software Author	jkohlbach
Software Website	visser.com.au
Software Downloads	608,876
Software Active Installs	10,000
Software Record Last Updated	November 29, 2023

6 Vulnerabilities

WooCommerce - Store Exporter <= 2.7.2 - Reflected Cross-Site Scripting via 'filter'

6.1

CVE-2023-46822

Oct 29, 2023

Researcher: Muhammad Daffa

WooCommerce – Store Exporter <= 2.7 - Reflected Cross-Site Scripting

6.1

CVE-2022-0149

Jan 10, 2022

Researcher: Krzysztof Zając

WooCommerce - Store Exporter <= 2.3.1 - CSV Injection

6.0

CVE ID Unknown

Jan 9, 2020

Researcher: Vishnupriya Ilango

WooCommerce – Store Exporter <= 1.8.3 - Missing Authorization

9.8

CVE-2016-10935

Feb 10, 2016

Researcher: James Golovich

WooCommerce Store Exporter <= 1.7.5 - Reflected Cross-Site Scripting

6.1

CVE ID Unknown

Aug 26, 2014

Researcher: Mike Manzotti

WooCommerce – Store Exporter <= 1.7.5 - Stored Cross-Site Scripting

6.4

CVE ID Unknown

Aug 26, 2014

Researcher: Mike Manzotti

Title	CVE ID	CVSS	Researchers	Date
WooCommerce - Store Exporter <= 2.7.2 - Reflected Cross-Site Scripting via 'filter'	CVE-2023-46822	6.1	Muhammad Daffa	October 29, 2023
WooCommerce – Store Exporter <= 2.7 - Reflected Cross-Site Scripting	CVE-2022-0149	6.1	Krzysztof Zając	January 10, 2022
WooCommerce - Store Exporter <= 2.3.1 - CSV Injection		6.0	Vishnupriya Ilango	January 9, 2020
WooCommerce – Store Exporter <= 1.8.3 - Missing Authorization	CVE-2016-10935	9.8	James Golovich	February 10, 2016
WooCommerce Store Exporter <= 1.7.5 - Reflected Cross-Site Scripting		6.1	Mike Manzotti	August 26, 2014
WooCommerce – Store Exporter <= 1.7.5 - Stored Cross-Site Scripting		6.4	Mike Manzotti	August 26, 2014

All the threat data shared in this database is powered by Wordfence Intelligence Enterprise.
Interested in integrating this data into your platform or network?
Contact us now to discuss API access to our Wordfence Intelligence Enterprise Data Feeds.

Inquire Now

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation