CVE-2022-41655: Critical Sensitive Data Exposure Vulnerability Discovered in Phone Orders for WooCommerce Plugin <= 3.7.1 on WordPress
A recent vulnerability (CVE-2022-41655) has been discovered in the Phone Orders for WooCommerce plugin, affecting versions up to and including 3.7.1 on WordPress.
CVE-2022-40128: Cross-Site Request Forgery (CSRF) Vulnerability in Advanced Order Export for WooCommerce Plugin on WordPress leads to Unauthorized File Download
A recently identified vulnerability, CVE-2022-40128, has been found in the Advanced Order Export for WooCommerce plugin (versions <= 3.3.2), which is widely used