Google Analytics 4 (GA4), Google Ads, Meta Pixel, GTM & Multiple Pixels for Woocommerce & WordPress

Information

Software Type Plugin
Software Slug enhanced-e-commerce-for-woocommerce-store (view on wordpress.org)
Software Status Active
Software Author tatvic
Software Website www.conversios.io
Software Downloads 2,549,057
Software Active Installs 20,000
Software Record Last Updated November 19, 2024

8 Vulnerabilities

Title Status CVE ID CVSS Researchers Date
Conversios.io - All-in-one Google Analytics, Pixels and Product Feed Manager for WooCommerce <= 7.1.0 - Reflected Cross-Site Scripting Patched CVE-2024-6288 4.7 Ulyses Saicha June 27, 2024
Conversios.io <= 6.9.1 - Reflected Cross-Site Scripting Patched CVE-2024-29794 6.1 Le Ngoc Anh March 25, 2024
Conversios <= 7.0.7 - Authenticated (Subscriber+) SQL Injection via ee_syncProductCategory Patched CVE-2024-0786 8.8 Maksim Kosenko February 27, 2024
Conversios – Google Analytics 4 (GA4), Meta Pixel & more Via Google Tag Manager For WooCommerce <= 7.0.7 - Authenticated (Subscriber+) SQL Injection Patched CVE-2024-1203 8.8 Krzysztof Zając February 27, 2024
Conversios.io <= 6.5.0 - Missing Authorization Patched CVE-2023-51357 5.3 Mika December 26, 2023
Conversios.io <= 6.5.3 - Reflected Cross-Site Scripting Patched CVE-2023-46094 6.1 Phd October 17, 2023
All-in-one Google Analytics, Pixels and Product Feed Manager for WooCommerce <= 5.2.3 - Cross-Site Request Forgery Patched CVE-2022-46797 4.3 Muhammad Daffa February 6, 2023
Conversios.io - Google Analytics and Google Shopping plugin for WooCommerce <= 4.6.1 Authenticated SQL Injection Patched CVE-2021-24952 8.8 ZhongFu Su February 1, 2022

Did you know Wordfence Intelligence provides free personal and commercial API access to our comprehensive WordPress vulnerability database, along with a free webhook integration to stay on top of the latest vulnerabilities added and updated in the database? Get started today!

Learn more

Want to get notified of the latest vulnerabilities that may affect your WordPress site?
Install Wordfence on your site today to get notified immediately if your site is affected by a vulnerability that has been added to our database.

Get Wordfence

The Wordfence Intelligence WordPress vulnerability database is completely free to access and query via API. Please review the documentation on how to access and consume the vulnerability data via API.

Documentation