Wpfactory Product Xml Feed Manager For Woocommerce vulnerabilities
2 known vulnerabilities affecting wpfactory/product_xml_feed_manager_for_woocommerce.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-49887P2CRITICALCVSS 9.9≤ 2.9.32025-08-14
CVE-2025-49887 [CRITICAL] CWE-94 CVE-2025-49887: Improper Control of Generation of Code ('Code Injection') vulnerability in WPFactory Product XML Fee
Improper Control of Generation of Code ('Code Injection') vulnerability in WPFactory Product XML Feed Manager for WooCommerce product-xml-feeds-for-woocommerce allows Remote Code Inclusion.This issue affects Product XML Feed Manager for WooCommerce: from n/a through <= 2.9.3.
nvd
CVE-2025-30959P3MEDIUMCVSS 6.5≤ 2.9.22025-07-16
CVE-2025-30959 [MEDIUM] CWE-862 CVE-2025-30959: Missing Authorization vulnerability in WPFactory Product XML Feed Manager for WooCommerce product-xm
Missing Authorization vulnerability in WPFactory Product XML Feed Manager for WooCommerce product-xml-feeds-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Product XML Feed Manager for WooCommerce: from n/a through <= 2.9.2.
nvd