cleantalk
Vulnerabilities and Security Researches

Facebook for WooCommerce, PSC-2026-64659

PSC, Research URL

PSC-2026-64659

Home page URL

Security reports for Facebook for WooCommerce

Application

Facebook for WooCommerce

Published on
May 26, 2026
Research Description
Commerce integrations expand a WordPress site beyond local content management into external advertising, catalog synchronization, tracking pixels, conversion APIs, and customer communication channels. That integration layer is powerful, but it also increases exposure around tokens, product metadata, order-related events, tracking configuration, and administrator onboarding flows. Meta for WooCommerce version 3.7.0 has successfully completed the CleanTalk Plugin Security Certification process and received PSC-2026-64659, confirming that the plugin was reviewed from a secure code perspective with attention to common exploitation paths for WooCommerce marketing and platform-integration plugins.
Affected versions
Min 3.7.0, max 3.7.0.
Status
SAFE & CERTIFIED
Previous vulnerability researches
Facebook for WooCommerce , May 26, 2026
Facebook for WooCommerce (CVE-2025-64296) , Dec 10, 2025
Facebook for WooCommerce (CVE-2019-15840) , Jun 06, 2024
Facebook for WooCommerce (CVE-2019-15841) , Jun 06, 2024
New vulnerability
WP Activity Log (CVE-2026-45435) , May 26, 2026
Unlimited Elements For Elementor (Free Widgets, Addons, Templates) (CVE-2026-48837) , May 26, 2026
Website Builder by SeedProd — Theme Builder, Landing Page Builder, Coming Soon Page, Maintenance Mode , May 26, 2026
Instant Images – One Click Image Uploads from Unsplash, Openverse, Pixabay and Pexels , May 26, 2026
Enable Media Replace , May 26, 2026