CVE-2025-5817 | Amazon Products to WooCommerce Plugin up to 1.2.7 on WordPress wcta2w_get_urls server-side request forgery

Inserito da Angelo Barbosa | Lug 1, 2025 | CVE

A vulnerability was found in Amazon Products to WooCommerce Plugin up to 1.2.7 on WordPress. It has been classified as critical. This affects the function wcta2w_get_urls. The manipulation leads to server-side request forgery.

This vulnerability is uniquely identified as CVE-2025-5817. It is possible to initiate the attack remotely. There is no exploit available.

CVE-2025-5817 | Amazon Products to WooCommerce Plugin up to 1.2.7 on WordPress wcta2w_get_urls server-side request forgery

Post correlati

CVE-2023-52363 | Huawei HarmonyOS/EMUI Control Panel Module Privilege Escalation

CVE-2024-41206 | tsMuxer nightly-2024-03-14-01-51-12 TS Video File stack-based overflow (Issue 859)

CVE-2024-4970 | Widget Bundle Plugin up to 2.0.0 on WordPress Setting cross site scripting

CVE-2023-6486 | Spectra Plugin up to 2.10.3 on WordPress Custom CSS cross site scripting