Vulnerabilities and security researches forwpc-product-options wpc-product-options

Nov 10, 2025

CVE, Research URL: CVE-2025-60248
Home page URL: Security reports for WPC Product Options for WooCommerce
Application: WPC Product Options for WooCommerce
Date: Nov 06, 2025
Research Description: Improper Control of Filename for Include/Require Statement in PHP Program ('PHP Remote File Inclusion') vulnerability in WPClever WPC Product Options for WooCommerce wpc-product-options allows PHP Local File Inclusion.This issue affects WPC Product Options for WooCommerce: from n/a through <= 1.8.6.
Affected versions: max 1.8.6.
Status: vulnerable