Product Import Export For Woocommerce@* Security Vulnerabilities and Issues — Product Import Export For Woocommerce@* CVE List

Lucene search

WebtoffeeProduct Import Export For Woocommerce*

4 matches found

CVE•added 2025/03/26 12:15 p.m.•70 views

CVE-2025-1913

The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to PHP Object Injection in all versions up to, and including, 2.5.0 via deserialization of untrusted input from the 'form_data' parameter This makes it possible for authenticated attackers...

7.2CVSS7.5AI score0.00466EPSS

CVE•added 2025/03/26 12:15 p.m.•50 views

CVE-2025-1769

The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 2.5.0 via the download_file() function. This makes it possible for authenticated attackers, with Administrator-level access and...

4.9CVSS6.7AI score0.00135EPSS

CVE•added 2025/03/26 12:15 p.m.•47 views

CVE-2025-1912

The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to Server-Side Request Forgery in all versions up to, and including, 2.5.0 via the validate_file() Function. This makes it possible for authenticated attackers, with Administrator-level ac...

7.6CVSS6.8AI score0.00062EPSS

CVE•added 2025/03/26 12:15 p.m.•43 views

CVE-2025-1911

The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to arbitrary file deletion due to insufficient file path validation in the admin_log_page() function in all versions up to, and including, 2.5.0. This makes it possible for authenticated a...

6.5CVSS7AI score0.00097EPSS