cleantalk
Vulnerabilities and Security Researches

Product Addons & Fields for WooCommerce, CVE-2025-66069

CVE, Research URL

CVE-2025-66069

Home page URL

Security reports for Product Addons & Fields for WooCommerce

Application

Product Addons & Fields for WooCommerce

Published on
Nov 21, 2025
Research Description
Missing Authorization vulnerability in Themeisle PPOM for WooCommerce woocommerce-product-addon allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects PPOM for WooCommerce: from n/a through <= 33.0.16.
Affected versions
max 33.0.16.
Status
vulnerable
Previous vulnerability researches
FREE DOWNLOAD MANAGER (CVE-2024-49315) , Oct 19, 2024
New vulnerability
Inline frame &#8211; Iframe (CVE-2025-12645) , Dec 11, 2025
WP Bootstrap Tabs (CVE-2025-11822) , Dec 11, 2025
SortTable Post (CVE-2025-12649) , Dec 11, 2025
Surbma | MiniCRM Shortcode (CVE-2025-11800) , Dec 11, 2025
Squirrels Auto Inventory (CVE-2025-12631) , Dec 11, 2025