2 matches found
CVE-2025-6222
CVE-2025-6222 affects the WooCommerce Refund And Exchange with RMA - Warranty Management, Refund Policy, Manage User Wallet WordPress plugin. The vulnerability is an unauthenticated arbitrary file upload caused by missing file type validation in the ced_rnx_order_exchange_attach_files function, e...
WordPress WooCommerce Refund And Exchange with RMA plugin <= 3.2.6 - Unauthenticated Arbitrary File Upload vulnerability
Unauthenticated Arbitrary File Upload vulnerability discovered by WordFence in WordPress Plugin WooCommerce Refund And Exchange with RMA versions = 3.2.6...