2 matches found
CVE-2025-12115
The WPC Name Your Price for WooCommerce plugin for WordPress is vulnerable to unauthorized price alteration in all versions up to, and including, 2.1.9. This is due to the plugin not disabling the ability to name a custom price when it has been specifically disabled for a product. This makes it...
WordPress WPC Name Your Price for WooCommerce plugin <= 2.1.9 - Unauthenticated Price Alteration vulnerability
Unauthenticated Price Alteration vulnerability discovered by Jonas Benjamin Friedli in WordPress Plugin WPC Name Your Price for WooCommerce versions = 2.1.9...