2025-12-12 03:20:56
Wordfence
PUBLISHED
The Product Filtering by Categories, Tags, Price Range for WooCommerce – Filter Plus plugin for WordPress is vulnerable to unauthorized modification of data in all versions up to, and including, 1.1.5 due to a missing capability check on the filter_save_settings and add_filter_options AJAX actions. This makes it possible for unauthenticated attackers to modify the plugins settings and create arbitrary filter options.