WCMultiShipping — Mondial Relay, Inpost & Chronopost for WooCommerce

Vulnerabilities 5Slug wc-multishippingLatest version 3.0.2WordPress.org →

Minimum safe version

2.3.8

Update to 2.3.8 or later to address 5 fixable vulnerabilities

Latest available3.0.2 ✓

N/A

< 2.3.8

WCMultiShipping < 2.3.8 - Subscriber+ Arbitrary Account Credentials Test

N/A

2023-11-29< 2.3.8

WordPress WCMultiShipping Plugin <= 2.3.7 is vulnerable to Broken Access Control

N/A

2023-11-28< 2.3.8

Chronopost & Mondial relay pour WooCommerce - WCMultiShipping <= 2.3.7 - Incorrect Authorization

Medium 6.5

2024-12-09< 2.3.6

CVE-2023-48274

N/A

2023-11-21< 2.3.6

WCMultiShipping <= 2.3.5 - Missing Authorization to Log Export