2 matches found
CVE-2025-12820
The CVE CVE-2025-12820 affects the Pure WC Variation Swatches WordPress plugin (versions up to 1.1.7). The issue is an absence of an authorization check when updating plugin settings, which could allow any authenticated user to modify settings. Connected sources consistently describe it as an Una...
PT-2025-52546
Name of the Vulnerable Software and Affected Versions Pure WC Variation Swatches WordPress plugin versions through 1.1.7 Description The Pure WC Variation Swatches WordPress plugin does not perform authorization checks when updating its settings. This allows any authenticated user to modify these...