AfterShip Tracking – All-In-One WooCommerce Order Tracking (Free plan available), CVE-2025-58201

CVE, Research URL: CVE-2025-58201
Home page URL: Security reports for AfterShip Tracking – All-In-One WooCommerce Order Tracking (Free plan available)
Application: AfterShip Tracking – All-In-One WooCommerce Order Tracking (Free plan available)
Published on: Aug 27, 2025
Research Description: Missing Authorization vulnerability in AfterShip & Automizely AfterShip Tracking allows Accessing Functionality Not Properly Constrained by ACLs. This issue affects AfterShip Tracking: from n/a through 1.17.17.
Affected versions: Min -, max 1.17.18.
Status: vulnerable

AfterShip Tracking &#8211; All-In-One WooCommerce Order Tracking (Free plan available), CVE-2025-58201