CVE-2025-49887

Publication date

2025-08-14 10:34:06

Family

Patchstack

State

PUBLISHED

Description

Improper Control of Generation of Code (Code Injection) vulnerability in WPFactory Product XML Feed Manager for WooCommerce product-xml-feeds-for-woocommerce allows Remote Code Inclusion.This issue affects Product XML Feed Manager for WooCommerce: from n/a through <= 2.9.3.