CVE-2025-4602 | Store Manager for WooCommerce Plugin up to 1.2.5 on WordPress get_file path traversal

Inserito da Angelo Barbosa | Mag 23, 2025 | CVE

A vulnerability, which was classified as critical, has been found in Store Manager for WooCommerce Plugin up to 1.2.5 on WordPress. Affected by this issue is the function get_file. The manipulation leads to path traversal.

This vulnerability is handled as CVE-2025-4602. The attack may be launched remotely. There is no exploit available.

CVE-2025-4602 | Store Manager for WooCommerce Plugin up to 1.2.5 on WordPress get_file path traversal

Post correlati

CVE-2025-25896 | D-Link DSL-3782 1.01 Packet destination/netmask/gateway denial of service

CVE-2023-49195 | Nested Pages Plugin up to 3.2.6 on WordPress cross site scripting

CVE-2023-49965 | SpaceX Starlink Wi-Fi Router Gen 2 prior 2023.48.0 on Setup Setup Page ssid/password cross site scripting

CVE-2024-20396 | Cisco Webex Teams up to 43.4.0.25788 File Protocol information disclosure (cisco-sa-webex-app-ZjNm8X8j)