High severity7.3NVD Advisory· Published Mar 26, 2025· Updated Jun 17, 2026
CVE-2025-1514
CVE-2025-1514
Description
The Active Products Tables for WooCommerce. Use constructor to create tables plugin for WordPress is vulnerable to unauthorized filter calling due to insufficient restrictions on the get_smth() function in all versions up to, and including, 1.0.6.7. This makes it possible for unauthenticated attackers to call arbitrary WordPress filters with a single parameter.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- Range: <=1.0.6.7
- Range: <=1.0.6.7
Patches
Vulnerability mechanics
References
3News mentions
0No linked articles in our index yet.