CVE-2025-67599

Publication date

2025-12-09 14:14:19

Family

Patchstack

State

PUBLISHED

Description

Missing Authorization vulnerability in WebToffee WebToffee eCommerce Marketing Automation decorator-woocommerce-email-customizer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WebToffee eCommerce Marketing Automation: from n/a through <= 2.1.1.