CVE-2025-67909

Publication date

2025-12-24 13:10:24

Family

Patchstack

State

PUBLISHED

Description

Authorization Bypass Through User-Controlled Key vulnerability in WP Swings Membership For WooCommerce membership-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Membership For WooCommerce: from n/a through <= 3.0.3.