cleantalk
Vulnerabilities and Security Researches

Facebook for WooCommerce, CVE-2026-49059

CVE, Research URL

CVE-2026-49059

Home page URL

Security reports for Facebook for WooCommerce

Application

Facebook for WooCommerce

Published on
May 27, 2026
Research Description
URL Redirection to Untrusted Site ('Open Redirect') vulnerability in Facebook Facebook for WooCommerce allows Phishing. This issue affects Facebook for WooCommerce: from n/a through 3.7.0.
Affected versions
max 3.7.0.
Status
vulnerable
Previous vulnerability researches
CRM WordPress Plugin – RepairBuddy (CVE-2026-39584) , May 02, 2026
CRM WordPress Plugin – RepairBuddy (CVE-2024-51793) , Nov 12, 2024
CRM WordPress Plugin – RepairBuddy (CVE-2024-12259) , Dec 19, 2024
CRM WordPress Plugin – RepairBuddy (5de96d64bb570d61b961a41ccba6f5e4efc71a47) , Jun 07, 2024
CRM WordPress Plugin – RepairBuddy (CVE-2026-24638) , May 28, 2026
New vulnerability
Style Kits – Advanced Theme Styles for Elementor (CVE-2026-6565) , May 28, 2026
EventPrime – Events Calendar, Bookings and Tickets (CVE-2026-42686) , May 28, 2026
E2Pdf – Export To Pdf Tool for WordPress (CVE-2026-42681) , May 28, 2026
Online Service Booking System & Reservation Plugin – WpBookingly (CVE-2026-25444) , May 28, 2026
Ads by WPQuads – Adsense Ads, Banner Ads, Popup Ads (CVE-2026-42732) , May 28, 2026