cleantalk
Vulnerabilities and Security Researches

Product Feed for WooCommerce – Google Shops, Facebook Shop, TikTok, Instagram, and More, CVE-2025-49287

CVE, Research URL

CVE-2025-49287

Home page URL

Security reports for Product Feed for WooCommerce – Google Shops, Facebook Shop, TikTok, Instagram, and More

Application

Product Feed for WooCommerce – Google Shops, Facebook Shop, TikTok, Instagram, and More

Published on
Jun 06, 2025
Research Description
Missing Authorization vulnerability in WebToffee Product Feed for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Product Feed for WooCommerce: from n/a through 2.2.8.
Affected versions
max 2.2.9.
Status
vulnerable
Previous vulnerability researches
Product Feed for WooCommerce – Google Shops, Facebook Shop, TikTok, Instagram, and More (CVE-2026-22480) , Mar 30, 2026
Product Feed for WooCommerce – Google Shops, Facebook Shop, TikTok, Instagram, and More (CVE-2025-49287) , Jun 15, 2025
Product Feed for WooCommerce – Google Shops, Facebook Shop, TikTok, Instagram, and More (CVE-2025-66089) , Dec 10, 2025
New vulnerability
File Manager Pro – Filester , Mar 30, 2026
Simple Author Box , Mar 30, 2026
Customizable WordPress Gallery Plugin – Modula Image Gallery , Mar 30, 2026
Speed Optimizer – The All-In-One WordPress Performance-Boosting Plugin , Mar 30, 2026
Product Feed PRO for WooCommerce (CVE-2026-32443) , Mar 30, 2026