Unrestricted File Upload Vulnerability in HaruTheme WooCommerce Designer Pro
Posted: Sat Sep 27, 2025 7:45 am
What is CVE-2025-60219?
The HaruTheme WooCommerce Designer Pro plugin presents a security vulnerability allowing unauthorized users to upload files of dangerous types, potentially enabling the upload of web shells to the server. This issue impacts versions from n/a to 1.9.24, posing a significant risk to the security of websites utilizing this plugin. Immediate patching and prevention measures are strongly recommended to secure your web applications.
https://securityvulnerability.io/vulner ... 2025-60219
The HaruTheme WooCommerce Designer Pro plugin presents a security vulnerability allowing unauthorized users to upload files of dangerous types, potentially enabling the upload of web shells to the server. This issue impacts versions from n/a to 1.9.24, posing a significant risk to the security of websites utilizing this plugin. Immediate patching and prevention measures are strongly recommended to secure your web applications.
https://securityvulnerability.io/vulner ... 2025-60219