CVE-2018-21007

The woo-confirmation-email plugin before 3.2.0 for WordPress has no blocking of direct access to supportive xl folders inside uploads.

We have discovered 38 live websites that are affected by CVE-2018-21007.

Run a Free Instant Scan



Affected Software

Product  Woo Confirmation Email
Category Wordpress Plugins
Vulnerable Domains38 live websites (100% of Woo Confirmation Email install base)
Vulnerable Versions
  • from 0 through 3.2
Vulnerable Versions Count0 versions ( less than 0.1% of all versions)



Details

  • Published - Aug 29, 2019
  • Updated - Aug 5, 2024

Website Distribution by Country

Number of websites using CVE-2018-21007
United States6 websites


France7 websites
Italy6 websites
Iran3 websites
Hong Kong2 websites
Russia2 websites
Singapore2 websites
Australia1 websites
Bulgaria1 websites
China1 websites

Website Distribution by TLD

Number of websites using CVE-2018-21007
.com14 websites
.it5 websites
.com.au2 websites
.fr2 websites
.co.jp1 websites
.eu1 websites
.net1 websites
.org1 websites
.pl1 websites
.ru1 websites

Websites affected by CVE-2018-21007

Top websites that are affected by CVE-2018-21007. Please click on the "Contact us" link to get more information.
DomainCountryRankContacts
*********.it Italy***,***
***********.com United States*,***,***
*********.**.jp Japan*,***,***
***.org United States*,***,***
************.it Italy*,***,***
***************.com France*,***,***
*******.***.sg Singapore*,***,***
*****************.it Italy*,***,***
*************.it Italy*,***,***
*****.********.***.hk Hong Kong**,***,***
See full domain list

FAQ

A total of 38 websites have been identified as vulnerable to CVE-2018-21007, based on global website indexing conducted by WebTechSurvey.
The Woo Confirmation Email is affected by the CVE-2018-21007 vulnerability.
Woo Confirmation Email versions up to and including 3.2 are vulnerable to CVE-2018-21007.