Product%20XML%20Feed%20Manager%20for%20WooCommerce

Product XML Feed Manager for WooCommerce

Source -

CNA

CNA CVEs -

ADP CVEs -

CISA CVEs -

NVD CVEs -

2Vulnerabilities found

CVE-2025-49887

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-9.9||CRITICAL

EPSS-0.29% / 52.83%

7 Day CHG+0.19%

Published-14 Aug, 2025 | 10:34

Updated-28 Apr, 2026 | 16:13

WordPress Product XML Feed Manager for WooCommerce Plugin <= 2.9.3 - Remote Code Execution (RCE) Vulnerability

Improper Control of Generation of Code ('Code Injection') vulnerability in WPFactory Product XML Feed Manager for WooCommerce product-xml-feeds-for-woocommerce allows Remote Code Inclusion.This issue affects Product XML Feed Manager for WooCommerce: from n/a through <= 2.9.3.

Vendor-WPFactory

Product-Product XML Feed Manager for WooCommerce

CWE ID-CWE-94

Improper Control of Generation of Code ('Code Injection')

CVE-2025-30959

Assigner-Patchstack

View Details

Assigner-Patchstack

CVSS Score-6.5||MEDIUM

EPSS-0.30% / 53.55%

7 Day CHG~0.00%

Published-16 Jul, 2025 | 11:28

Updated-28 Apr, 2026 | 16:12

WordPress Product XML Feed Manager for WooCommerce <= 2.9.2 - Broken Access Control Vulnerability

Missing Authorization vulnerability in WPFactory Product XML Feed Manager for WooCommerce product-xml-feeds-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Product XML Feed Manager for WooCommerce: from n/a through <= 2.9.2.

Vendor-WPFactory

Product-Product XML Feed Manager for WooCommerce

CWE ID-CWE-862

Missing Authorization