All In One B2b For Woocommerce Project CVEs and Security Vulnerabilities

Export limit exceeded: 359602 CVEs match your query. Please refine your search to export 10,000 CVEs or fewer.

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Export CSV

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2023-4703	1 All In One B2b For Woocommerce Project	1 All In One B2b For Woocommerce	2025-06-20	7.5 High
The All in One B2B for WooCommerce WordPress plugin through 1.0.3 does not properly validate parameters when updating user details, allowing an unauthenticated attacker to update the details of any user. Updating the password of an Admin user leads to privilege escalation.
CVE-2023-3547	1 All In One B2b For Woocommerce Project	1 All In One B2b For Woocommerce	2025-04-23	8.8 High
The All in One B2B for WooCommerce WordPress plugin through 1.0.3 does not properly check nonce values in several actions, allowing an attacker to perform CSRF attacks.

Page 1 of 1.