cleantalk
Vulnerabilities and Security Researches

Import Export For WooCommerce, CVE-2025-48144

CVE, Research URL

CVE-2025-48144

Home page URL

Security reports for Import Export For WooCommerce

Application

Import Export For WooCommerce

Published on
May 16, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in sidngr Import Export For WooCommerce allows Stored XSS. This issue affects Import Export For WooCommerce: from n/a through 1.6.2.
Affected versions
Min -, max 1.6.2.
Status
vulnerable
Previous vulnerability researches
JSFiddle Shortcode (CVE-2024-10818) , May 17, 2025
New vulnerability
Sharespine Woocommerce Connector (CVE-2025-48128) , May 18, 2025
Wishlist (CVE-2025-31063) , May 18, 2025
Wishlist (CVE-2025-31062) , May 18, 2025
WP-Members Membership Plugin (CVE-2025-4610) , May 18, 2025
UltraAddons – Elementor Addons (Header Footer Builder, Custom Font, Custom CSS,Woo Widget, Menu Builder, Anywhere Element (CVE-2025-48131) , May 18, 2025