cleantalk
Vulnerabilities and Security Researches

Checkout Files Upload for WooCommerce, CVE-2022-29425

CVE, Research URL

CVE-2022-29425

Home page URL

Security reports for Checkout Files Upload for WooCommerce

Application

Checkout Files Upload for WooCommerce

Published on
May 21, 2022
Research Description
Cross-Site Scripting (XSS) vulnerability in WP Wham's Checkout Files Upload for WooCommerce plugin <= 2.1.2 at WordPress.
Affected versions
max 2.1.3.
Status
vulnerable
Previous vulnerability researches
Checkout Files Upload for WooCommerce (CVE-2022-29425) , Jun 07, 2024
Checkout Files Upload for WooCommerce (CVE-2025-39520) , Apr 18, 2025
New vulnerability
OOPSpam Anti-Spam (CVE-2026-32544) , Mar 31, 2026
NotificationX &#8211; Best FOMO, Social Proof, WooCommerce Sales Popup &amp; Notification Bar Plugin With Elementor (CVE-2026-27042) , Mar 31, 2026
The Conference (CVE-2026-32335) , Mar 31, 2026
WP Booking System &#8211; Booking Calendar (CVE-2025-68515) , Mar 31, 2026
UPI QR Code Payment Gateway for WooCommerce (CVE-2025-67969) , Mar 31, 2026