2 matches found
CVE-2025-5813 Amazon Products to WooCommerce <= 1.2.7 - Missing Authorization to Unauthenticated Arbitrary Product Creation
The Amazon Products to WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the wcta2wgetamazonproductcallback function in all versions up to, and including, 1.2.7. This makes it possible for unauthenticated attackers to create n...
WordPress Amazon Products to WooCommerce plugin <= 1.2.7 - Missing Authorization to Unauthenticated Arbitrary Product Creation vulnerability
Missing Authorization to Unauthenticated Arbitrary Product Creation vulnerability discovered by ch4r0n in WordPress Plugin Amazon Products to WooCommerce versions = 1.2.7...