CVE-2025-47649 – Ilmosys Open Close WooCommerce Store Path Traversal Vulnerability

May 7, 2025

CVE ID : CVE-2025-47649

Published : May 7, 2025, 3:16 p.m. | 4 hours, 28 minutes ago

Description : Path Traversal vulnerability in ilmosys Open Close WooCommerce Store allows PHP Local File Inclusion. This issue affects Open Close WooCommerce Store: from n/a through 4.9.5.

Severity: 8.8 | HIGH

Visit the link for more details, such as CVSS details, affected products, timeline, and more…

Source: Read More

Previous ArticleCVE-2025-46827 – Graylog HTML Form Cookie Disclosure

Next Article CVE-2025-47549 – Themefic BEAF Unrestricted File Upload RCE

Mirantis reveals Lens Prism, an AI copilot for operating Kubernetes clusters

Avoid these common platform engineering mistakes

Full-Stack Techies vs Toptal: Which Is Better for React.js Outsourcing?

The AI productivity paradox in software engineering: Balancing efficiency and human skill retention

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

Microsoft reportedly lacks the know-how to fully leverage OpenAI’s tech — despite holding IP rights

PHP 8.5.0 Alpha 1 available for testing

PHP 8.5.0 Alpha 1 available for testing

Recording cross browser compatible media

Celebrating Perficient’s Third Databricks Champion

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Microsoft Gaming studios head Matt Booty says “overall portfolio strategy is unchanged” — with more than 40 games in production

Capcom reports that its Steam game sales have risen massively — despite flagship titles like Monster Hunter Wilds receiving profuse backlash from PC players

Cloudflare is fighting to safeguard “the future of the web itself” — standing directly in the way of leading AI firms

CVE-2025-47649 – Ilmosys Open Close WooCommerce Store Path Traversal Vulnerability

Critical Lucee Flaw (CVE-2025-34074, CVSS 9.4): Authenticated RCE Via Scheduled Task Abuse, Metasploit Module Out

Exposed JDWP Debug Ports Under Attack: Cryptominers Infiltrating Java Apps in Hours

CVE-2025-6814 – Booking X WordPress Unauthorized Data Access Vulnerability

Microsoft makes it easier to use Classic Outlook with new Outlook on Windows 11

ChatGPT can now connect to MCP servers – here’s how, and what to watch for

CVE-2025-48219 – O2 UK IMS E-UTRAN Cell Identity Leak

Think DeepSeek has cut AI spending? Think again

SafePay ransomware: What you need to know

CVE-2025-41255 – Cyberduck and Mountain Duck TLS Certificate Pinning Vulnerability

FOSS Weekly #25.25: Nitrux Hyprland, Joplin Tips, Denmark Ditching Microsoft, Tiling Moves and More Linux Stuff

CVE-2025-47649 – Ilmosys Open Close WooCommerce Store Path Traversal Vulnerability

Related Posts