CVE-2025-49380

The CVE-2025-49380 describes a Deserialization of Untrusted Data vulnerability in the WordPress plugin WooCommerce Vehicle Parts Finder (woo-vehicle-parts-finder) up to version 3.7, enabling PHP object injection via untrusted data. Public sources confirm the flaw affects WooCommerce Vehicle Parts...