VYPR

Easycommerce

by WordPress

Source repositories

CVEs (1)

  • CVE-2025-11457CriNov 11, 2025
    risk 0.57cvss 9.8epss 0.00

    The EasyCommerce – AI-Powered, Fast & Beautiful WordPress Ecommerce Plugin plugin for WordPress is vulnerable to Privilege Escalation in versions 0.9.0-beta2 to 1.8.2. This is due to the /easycommerce/v1/orders REST API endpoint not properly restricting the ability for users…