Webtoffee Product Import Export For Woocommerce — known CVE vulnerabilities
Every CVE whose affected-product data names Webtoffee Product Import Export For Woocommerce, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2024-30231 — CVSS 9.1 (critical): Unrestricted Upload of File with Dangerous Type vulnerability in WebToffee Product Import Export for WooCommerce.This issue affects Product…
CVE-2024-22152 — CVSS 8.0 (high): Unrestricted Upload of File with Dangerous Type vulnerability in WebToffee Product Import Export for WooCommerce.This issue affects Product…
CVE-2025-1912 — CVSS 7.6 (high): The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to Server-Side Request…
CVE-2025-1913 — CVSS 7.2 (high): The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to PHP Object Injection in…
CVE-2025-1769 — CVSS 4.9 (medium): The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to Directory Traversal in…
CVE-2025-1911 — CVSS 2.7 (low): The Product Import Export for WooCommerce – Import Export Product CSV Suite plugin for WordPress is vulnerable to arbitrary file deletion…