All 3 CVE vulnerabilities found in Import Export For WooCommerce, with AI-generated Chinese analysis, references, and POCs.
Vendor: sidngr
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-12389 | Import Export For WooCommerce <= 1.6.2 - Missing Authorization to Authenticated (Subscriber+) Settings Update CWE-862 | 4.3 | Medium | 2025-11-04 |
| CVE-2025-48144 | WordPress Import Export For WooCommerce plugin <= 1.6.2 - CSRF to Stored XSS vulnerability CWE-352 | 7.1 | High | 2025-05-16 |
| CVE-2024-54262 | WordPress Import Export For WooCommerce plugin <= 1.6.2 - Arbitrary File Upload vulnerability CWE-434 | 9.9 | Critical | 2024-12-13 |
All 3 known CVE vulnerabilities affecting Import Export For WooCommerce with full Chinese analysis, references, and POCs where available.