Vulnerabilities and security researches forselling-commander-connector selling-commander-connector

Nov 10, 2025

CVE, Research URL: CVE-2025-60243
Home page URL: Security reports for Selling Commander for WooCommerce – connector plugin
Application: Selling Commander for WooCommerce – connector plugin
Date: Nov 06, 2025
Research Description: Incorrect Privilege Assignment vulnerability in Holest Engineering Selling Commander for WooCommerce selling-commander-connector allows Privilege Escalation.This issue affects Selling Commander for WooCommerce: from n/a through <= 1.2.46.
Affected versions: max 1.2.46.
Status: vulnerable