Vulnerabilities

CVE-2025-12392

by Fred · 18/11/2025

The Cryptocurrency Payment Gateway for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the ‘handle_optin_optout’ function in all versions up to, and including, 2.0.22. This makes it possible for unauthenticated attackers to opt in and out of tracking.

More information : https://wordpress.org/plugins/triplea-cryptocurrency-payment-gateway-for-woocommerce/

Similar

Tags: Cybersecurity Alert