Drag and Drop Multiple File Upload (Pro) - WooCommerce — Vulnerabilities & Security Advisories 2

All 2 CVE vulnerabilities found in Drag and Drop Multiple File Upload (Pro) - WooCommerce, with AI-generated Chinese analysis, references, and POCs.

Vendor: HaruTheme

CVE ID	Title	CVSS	Severity	Published
CVE-2025-5746	Drag and Drop Multiple File Upload (Pro) - WooCommerce <= 1.7.1 and 5.0 - 5.0.5 - Unauthenticated Arbitrary File Upload CWE-434	9.8	Critical	2025-07-02
CVE-2025-49885	WordPress Drag and Drop Multiple File Upload (Pro) - WooCommerce plugin <= 5.0.6 - Arbitrary File Upload Vulnerability CWE-434	10.0	Critical	2025-06-27

All 2 known CVE vulnerabilities affecting Drag and Drop Multiple File Upload (Pro) - WooCommerce with full Chinese analysis, references, and POCs where available.

Goal Reached Thanks to every supporter — we hit 100%!

Drag and Drop Multiple File Upload (Pro) - WooCommerce — Vulnerabilities & Security Advisories 2