CVE-2026-12684 | WooCommerce Customer Reviews for WooCommerce Plugin up to 5.112.x on WordPress Review Media Attachment Feature unrestricted upload

SecurityVulns

A vulnerability has been found in WooCommerce Customer Reviews for WooCommerce Plugin up to 5.112.x on WordPress and classified as critical. The affected element is an unknown function of the component Review Media Attachment Feature. Performing a manipulation results in unrestricted upload.

This vulnerability was named CVE-2026-12684. The attack may be initiated remotely. There is no available exploit.VulDB Recent EntriesRead More