CVE-2025-10046 | ELEXtensions ELEX WooCommerce Google Shopping Plugin up to 1.4.3 on WordPress file_to_delete sql injection

A vulnerability was found in ELEXtensions ELEX WooCommerce Google Shopping Plugin up to 1.4.3 on WordPress. It has been rated as critical. Affected is an unknown function. Performing manipulation of the argument file_to_delete results in sql injection.

This vulnerability is cataloged as CVE-2025-10046. It is possible to initiate the attack remotely. There is no exploit available.VulDB Recent EntriesRead More