cleantalk
Vulnerabilities and Security Researches

Vitepos – Point of sale (POS) plugin for WooCommerce, CVE-2025-39535

CVE, Research URL

CVE-2025-39535

Home page URL

Security reports for Vitepos – Point of sale (POS) plugin for WooCommerce

Application

Vitepos – Point of sale (POS) plugin for WooCommerce

Published on
Apr 17, 2025
Research Description
Authentication Bypass Using an Alternate Path or Channel vulnerability in appsbd Vitepos allows Authentication Abuse. This issue affects Vitepos: from n/a through 3.1.7.
Affected versions
Min -, max 3.1.8.
Status
vulnerable
Previous vulnerability researches
HTML5 Video Player with Playlist (CVE-2025-32536) , Apr 13, 2025
HTML5 Video Player with Playlist (CVE-2014-4534) , Jun 07, 2024
New vulnerability
Anthologize (CVE-2025-39437) , Apr 19, 2025
Piotnet Addons For Elementor (CVE-2024-13650) , Apr 19, 2025
Starfish Review Generation & Marketing for WordPress (CVE-2025-39533) , Apr 19, 2025
Add to Header (CVE-2025-39423) , Apr 19, 2025
Photo Contest | Competition | Video Contest (CVE-2025-23782) , Apr 19, 2025