CVE-2025-12427 | YITH WooCommerce Wishlist Plugin up to 4.10.0 on WordPress REST API Endpoint resource injection

A vulnerability was found in YITH WooCommerce Wishlist Plugin up to 4.10.0 on WordPress. It has been rated as problematic. The impacted element is an unknown function of the component REST API Endpoint. The manipulation leads to improper control of resource identifiers.

This vulnerability is documented as CVE-2025-12427. The attack can be initiated remotely. There is not any exploit available.VulDB Recent EntriesRead More