Which Waitlist Woocommerce ( Back in stock notifier ) CVEs are tracked?

Waitlist Woocommerce ( Back in stock notifier ) tracked CVEs include CVE-2024-5324, CVE-2022-0215, CVE-2024-8724, and CVE-2024-43134.

Where should operators start on this Plugin hub?

Start with the priority CVE quick links, then open the full report for affected versions, remediation notes, CVSS vectors, and source references.

Plugin Vulnerability Hub

Plugin 5 known issues Latest disclosed Sep 13, 2024

Waitlist Woocommerce ( Back in stock notifier ) Vulnerabilities

Q: How many Waitlist Woocommerce ( Back in stock notifier ) vulnerabilities have patch guidance?

5 of 5 tracked Waitlist Woocommerce ( Back in stock notifier ) records include a published patch path.

Review known vulnerability records for the WordPress plugin Waitlist Woocommerce ( Back in stock notifier ) (`waitlist-woocommerce`), including severity, CVE references, affected versions, and patch status.

Recent tracked CVEs on this page include CVE-2024-8724, CVE-2024-43134 and CVE-2024-5324, so operators can jump from disclosure to patch validation without scanning the full feed first.

View on WordPress.org Back to Feed

Known Records

High or Critical

Patch Coverage

100%

Last Updated

Sep 14, 2024

Priority CVE Quick Links

Fast paths into Waitlist Woocommerce ( Back in stock notifier ) CVE reports

Start with the highest-signal CVE records for this WordPress plugin before scanning the full vulnerability feed.

Indexed CVEs

CVE-2024-5324 High 2.6.1

CVE-2024-5324 Waitlist Woocommerce ( Back in stock notifier ) Vulnerability

XootiX Framework <= Various Plugin Versions - Missing Authorization to Arbitrary Options Update

CVE-2022-0215 High 2.5.2

CVE-2022-0215 Waitlist Woocommerce ( Back in stock notifier ) Cross-Site Request Forgery

Waitlist Woocommerce ( Back in stock notifier ) <= 2.5.1 - Cross-Site Request Forgery to Arbitrary Options Update

CVE-2024-8724 Medium 2.7.6

CVE-2024-8724 Waitlist Woocommerce ( Back in stock notifier ) Cross-Site Scripting

Waitlist Woocommerce ( Back in stock notifier ) <= 2.7.5 - Reflected Cross-Site Scripting

CVE-2024-43134 Medium 2.6.1

CVE-2024-43134 Waitlist Woocommerce ( Back in stock notifier ) Vulnerability

Waitlist Woocommerce ( Back in stock notifier ) <= 2.6 - Missing Authorization

Coverage Snapshot

What this page helps you verify fast

This hub clusters every indexed record for Waitlist Woocommerce ( Back in stock notifier ) so operators can confirm whether a disclosed issue maps to the installed slug, version range, and patch path.

Patch Visibility

5 records include a published patch path, leaving 0 with no listed safe release yet.

Severity Mix

0 critical and 2 high severity findings.

Recent CVEs

CVE-2024-8724, CVE-2024-43134 and CVE-2024-5324

Reference Workflow

Jump from the hub into the full report when you need remediation notes, exploit context, CVSS vectors, or source references.

Triage First

Open the records most likely to drive action

These recent records surface the CVE strings, patch cues, and direct report links most operators need first.

CVE-2024-8724 Medium Patch path listed

CVE-2024-8724: Waitlist Woocommerce ( Back in stock notifier ) <= 2.7.5 - Reflected Cross-Site Scripting

The Waitlist Woocommerce ( Back in stock notifier ) plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the U...

Published

Sep 13, 2024

Patch Status

2.7.6

Open CVE-2024-8724 Report

CVE-2024-43134 Medium Patch path listed

CVE-2024-43134: Waitlist Woocommerce ( Back in stock notifier ) <= 2.6 - Missing Authorization

The Waitlist Woocommerce ( Back in stock notifier ) plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the send_email() and remove_row() function...

Published

Aug 07, 2024

Patch Status

2.6.1

Open CVE-2024-43134 Report

CVE-2024-5324 High Patch path listed

CVE-2024-5324: XootiX Framework <= Various Plugin Versions - Missing Authorization to Arbitrary Options Update

Multiple plugins for WordPress utilizing the XootiX Framework are vulnerable to unauthorized modification of data due to a missing capability check on the 'import_settings' function in vario...

Published

Jun 05, 2024

Patch Status

2.6.1

Open CVE-2024-5324 Report

Known Vulnerabilities

Reports for Waitlist Woocommerce ( Back in stock notifier )

Sorted by latest disclosure date so newly published issues surface first.

Plugin Medium Patched: Yes CVE-2024-8724

CVE-2024-8724: Waitlist Woocommerce ( Back in stock notifier ) <= 2.7.5 - Reflected Cross-Site Scripting

The Waitlist Woocommerce ( Back in stock notifier ) plugin for WordPress is vulnerable to Reflected Cross-Site Scripting due to the use of add_query_arg without appropriate escaping on the URL in all versions up to, and including, 2.7.5. This makes it possible for unauthenticated...

Published

Sep 13, 2024

Patched Release

2.7.6

Affected Versions

Versions up to 2.7.5

Next Step

Update to 2.7.6 or newer if supported.

Open CVE-2024-8724 Report Open CVE Reference

Plugin Medium Patched: Yes CVE-2024-43134

CVE-2024-43134: Waitlist Woocommerce ( Back in stock notifier ) <= 2.6 - Missing Authorization

The Waitlist Woocommerce ( Back in stock notifier ) plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the send_email() and remove_row() function in versions up to, and including, 2.6. This makes it possible for authenticated attackers,...

Published

Aug 07, 2024

Patched Release

2.6.1

Affected Versions

Versions up to 2.6

Next Step

Update to 2.6.1 or newer if supported.

Open CVE-2024-43134 Report Open CVE Reference

Plugin High Patched: Yes CVE-2024-5324

CVE-2024-5324: XootiX Framework <= Various Plugin Versions - Missing Authorization to Arbitrary Options Update

Multiple plugins for WordPress utilizing the XootiX Framework are vulnerable to unauthorized modification of data due to a missing capability check on the 'import_settings' function in various versions. This makes it possible for authenticated attackers, with Subscriber-level acc...

Published

Jun 05, 2024

Patched Release

2.6.1

Affected Versions

Versions up to 2.6

Next Step

Update to 2.6.1 or newer if supported.

Open CVE-2024-5324 Report Open CVE Reference

Plugin Medium Patched: Yes

Waitlist Woocommerce ( Back in stock notifier ) <= 2.5.2 - Cross-Site Request Forgery to Settings Reset

The Waitlist Woocommerce ( Back in stock notifier ) plugin for WordPress is vulnerable to Cross-Site Request Forgery in versions up to, and including, 2.5.3. This is due to missing nonce validation on the reset_settings() function. This makes it possible for unauthenticated attac...

Published

Jun 27, 2023

Patched Release

2.5.3

Affected Versions

Versions up to 2.5.2

Next Step

Update to 2.5.3 or newer if supported.

Open Full Report

Plugin High Patched: Yes CVE-2022-0215

CVE-2022-0215: Waitlist Woocommerce ( Back in stock notifier ) <= 2.5.1 - Cross-Site Request Forgery to Arbitrary Options Update

The Login/Signup Popup, Waitlist Woocommerce ( Back in stock notifier ), and Side Cart Woocommerce (Ajax) WordPress plugins by XootiX are vulnerable to Cross-Site Request Forgery via the save_settings function found in the ~/includes/xoo-framework/admin/class-xoo-admin-settings.p...

Published

Jan 13, 2022

Patched Release

2.5.2

Affected Versions

Versions up to 2.5.1

Next Step

Update to 2.5.2 or newer if supported.

Open CVE-2022-0215 Report Open CVE Reference