CVE-2025-4387 | Abandoned Cart Pro for WooCommerce Plugin up to 9.16.0 on WordPress wcap_add_to_cart_popup_upload_files unrestricted upload

SecurityVulns
Yanac

A vulnerability classified as critical was found in Abandoned Cart Pro for WooCommerce Plugin up to 9.16.0 on WordPress. This vulnerability affects the function wcap_add_to_cart_popup_upload_files. The manipulation leads to unrestricted upload.

This vulnerability was named CVE-2025-4387. The attack can be initiated remotely. There is no exploit available.VulDB Recent EntriesRead More