cleantalk
Vulnerabilities and Security Researches

WooCommerce PDF Invoice Builder, Create invoices, packing slips and more, CVE-2025-64269

CVE, Research URL

CVE-2025-64269

Home page URL

Security reports for WooCommerce PDF Invoice Builder, Create invoices, packing slips and more

Application

WooCommerce PDF Invoice Builder, Create invoices, packing slips and more

Published on
Nov 13, 2025
Research Description
Missing Authorization vulnerability in EDGARROJAS WooCommerce PDF Invoice Builder woo-pdf-invoice-builder allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce PDF Invoice Builder: from n/a through <= 1.2.150.
Affected versions
max 1.2.150.
Status
vulnerable
Previous vulnerability researches
Smash Balloon Social Post Feed , Jul 24, 2024
Smash Balloon Social Post Feed (CVE-2025-49937) , Dec 10, 2025
Smash Balloon Social Post Feed (CVE-2022-4477) , Jun 07, 2024
Smash Balloon Social Post Feed (CVE-2024-31379) , Jun 07, 2024
Smash Balloon Social Post Feed (CVE-2021-25065) , Jun 07, 2024
New vulnerability
GitHub Gist Shortcode Plugin (CVE-2025-12667) , Dec 12, 2025
Cryptocurrency Payment Gateway for WooCommerce (CVE-2025-12392) , Dec 12, 2025
Wbcom Designs &#8211; Private Community for BuddyPress (CVE-2025-67582) , Dec 12, 2025
WP-Walla (CVE-2025-12589) , Dec 12, 2025
Master Addons for Elementor (CVE-2025-63055) , Dec 12, 2025