cleantalk
Vulnerabilities and Security Researches

WooCommerce POS, CVE-2025-48117

CVE, Research URL

CVE-2025-48117

Home page URL

Security reports for WooCommerce POS

Application

WooCommerce POS

Published on
May 16, 2025
Research Description
Missing Authorization vulnerability in kilbot WooCommerce POS woocommerce-pos allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCommerce POS: from n/a through <= 1.7.8.
Affected versions
max 1.7.9.
Status
vulnerable
Previous vulnerability researches
WooCommerce POS (CVE-2025-48117) , May 18, 2025
WooCommerce POS (CVE-2026-52711) , Jun 18, 2026
WooCommerce POS (CVE-2024-2384) , Jun 06, 2024
New vulnerability
Advanced 301 and 302 Redirect (CVE-2026-49067) , Jun 18, 2026
Abandoned Contact Form 7 (CVE-2026-9187) , Jun 18, 2026
ABC Crypto Checkout (CVE-2026-52695) , Jun 18, 2026
WordPress File Sharing Plugin (CVE-2026-10093) , Jun 18, 2026
Gallery Plugin for WordPress &#8211; Envira Photo Gallery (CVE-2026-54190) , Jun 18, 2026