cleantalk
Vulnerabilities and Security Researches

Sharespine Woocommerce Connector, CVE-2025-48128

CVE, Research URL

CVE-2025-48128

Home page URL

Security reports for Sharespine Woocommerce Connector

Application

Sharespine Woocommerce Connector

Published on
May 16, 2025
Research Description
Missing Authorization vulnerability in Sharespine Sharespine Woocommerce Connector allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Sharespine Woocommerce Connector: from n/a through 4.7.55.
Affected versions
Min -, max 4.7.55.
Status
vulnerable
Previous vulnerability researches
Responsive Contact Form Builder & Lead Generation Plugin (CVE-2022-23180) , Jun 07, 2024
Responsive Contact Form Builder & Lead Generation Plugin (CVE-2022-23179) , Jun 07, 2024
Responsive Contact Form Builder & Lead Generation Plugin (CVE-2024-3637) , Jun 07, 2024
Responsive Contact Form Builder & Lead Generation Plugin (CVE-2024-1416) , Jun 07, 2024
Responsive Contact Form Builder & Lead Generation Plugin (CVE-2024-1415) , Jun 07, 2024
New vulnerability
Audio Comments Plugin (CVE-2025-4189) , May 18, 2025
WP Notes Widget (CVE-2025-48121) , May 18, 2025
Eventer (CVE-2025-39482) , May 18, 2025
Eventer (CVE-2025-39481) , May 18, 2025
Push notification for Mobile and Web app (CVE-2025-48127) , May 18, 2025