cleantalk
Vulnerabilities and Security Researches

QR Code Tag for WC order emails, POS receipt emails, PDF invoices, PDF packing slips, Blog posts, Custom post types and Pages (, CVE-2025-32268

CVE, Research URL

CVE-2025-32268

Home page URL

Security reports for QR Code Tag for WC order emails, POS receipt emails, PDF invoices, PDF packing slips, Blog posts, Custom post types and Pages (

Application

QR Code Tag for WC order emails, POS receipt emails, PDF invoices, PDF packing slips, Blog posts, Custom post types and Pages (

Published on
Apr 04, 2025
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in www.15.to QR Code Tag for WC allows Cross Site Request Forgery. This issue affects QR Code Tag for WC: from n/a through 1.9.36.
Affected versions
Min -, max 1.9.36.
Status
vulnerable
Previous vulnerability researches
WP Google Review Slider (CVE-2023-0259) , Jun 06, 2024
WP Google Review Slider (e42cedcff159170074fe08dcc12e3cd44aae4dcf) , Jun 06, 2024
WP Google Review Slider (CVE-2022-4242) , Jun 06, 2024
WP Google Review Slider (CVE-2024-2310) , Jun 06, 2024
WP Google Review Slider , Jul 24, 2024
New vulnerability
Advanced All in One Admin Search by WP Spotlight (CVE-2025-32261) , Apr 06, 2025
Free Booking Plugin for Hotels, Restaurant and Car Rental – eaSYNC (CVE-2025-32219) , Apr 06, 2025
Salon booking system (CVE-2025-32220) , Apr 06, 2025
1 Click WordPress Migration Plugin – 100% FREE for a limited time (CVE-2025-32257) , Apr 06, 2025
Sparkle Elementor Kit (CVE-2025-32157) , Apr 06, 2025