CVE-2025-13457 | WooCommerce Square Plugin up to 5.1.1 on WordPress get_token_by_id resource injection

A vulnerability was found in WooCommerce Square Plugin up to 5.1.1 on WordPress and classified as problematic. The affected element is the function get_token_by_id. The manipulation results in improper control of resource identifiers.

This vulnerability is reported as CVE-2025-13457. The attack can be launched remotely. No exploit exists.VulDB Recent EntriesRead More