cleantalk
Vulnerabilities and Security Researches

Product Feed for WooCommerce – Google Shops, Facebook Shop, TikTok, Instagram, and More, CVE-2026-22480

CVE, Research URL

CVE-2026-22480

Home page URL

Security reports for Product Feed for WooCommerce – Google Shops, Facebook Shop, TikTok, Instagram, and More

Application

Product Feed for WooCommerce – Google Shops, Facebook Shop, TikTok, Instagram, and More

Published on
Mar 25, 2026
Research Description
Deserialization of Untrusted Data vulnerability in WebToffee Product Feed for WooCommerce webtoffee-product-feed allows Object Injection.This issue affects Product Feed for WooCommerce: from n/a through <= 2.3.3.
Affected versions
max 2.3.3.
Status
vulnerable
Previous vulnerability researches
WP Terms Popup &#8211; Terms and Conditions and Privacy Policy WordPress Popups (CVE-2026-32495) , Mar 30, 2026
WP Terms Popup &#8211; Terms and Conditions and Privacy Policy WordPress Popups (CVE-2023-24006) , Jun 07, 2024
New vulnerability
RegistrationMagic &#8211; Custom Registration Forms, User Registration, Payment, and User Login (CVE-2026-24373) , Mar 30, 2026
RegistrationMagic &#8211; Custom Registration Forms, User Registration, Payment, and User Login (CVE-2026-32385) , Mar 30, 2026
RegistrationMagic &#8211; Custom Registration Forms, User Registration, Payment, and User Login (CVE-2026-32498) , Mar 30, 2026
Gallery Block (Meow Gallery) (CVE-2026-32418) , Mar 30, 2026
Master Addons for Elementor (CVE-2026-32462) , Mar 30, 2026