Critical Security Flaw in TI WooCommerce Wishlist Plugin for WordPress

29 May 2025

CybersecurityVulnerabilitiesWordPressE-commerce

Cybersecurity researchers have revealed an unpatched critical security flaw affecting the TI WooCommerce Wishlist plugin for WordPress. This vulnerability, rated CVSS 10.0, allows unauthenticated attackers to upload arbitrary files. The TI WooCommerce Wishlist plugin, which has over 100,000 active installations, enables e-commerce site customers to save their favorite products and share lists on social networks.

Read the original article on thehackernews.com

Critical Security Flaw in TI WooCommerce Wishlist Plugin for WordPress | Cyber Hub