Checkout Field Manager (Checkout Manager) for WooCommerce < 7.8.2 – Unauthenticated Limited File Upload | CVE 2025-12500 | Plugin Vulnerabilities

Description

The Checkout Field Manager (Checkout Manager) for WooCommerce plugin for WordPress is vulnerable to unauthenticated limited file upload in all versions up to, and including, 7.8.1. This is due to the plugin not properly verifying that a user is authorized to perform file upload actions via the "ajax_checkout_attachment_upload" function. This makes it possible for unauthenticated attackers to upload files to the server, though file types are limited to WordPress's default allowed MIME types (images, documents, etc.).

Affects Plugins

woocommerce-checkout-manager

Fixed in 7.8.2

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/e807480b-00c9-4340-bd05-b695b56e27ec

Miscellaneous

Original Researcher

Jamiryoo

Verified

No

WPVDB ID

5096a079-41f4-4ed8-91d7-98fdbf05d7ef

Timeline

Publicly Published

2026-02-18 (about 3 months ago)

Added

2026-02-18 (about 3 months ago)

Last Updated

2026-02-19 (about 3 months ago)

Other

Published

Title

Published

2015-03-16

Title

Reflex Gallery <= 3.1.3 - Arbitrary File Upload

Published

2026-03-12

Title

Mobile App Editor – WordPress to Android App Builder <= 1.3.1 - Authenticated (Editor+) Arbitrary File Upload

Published

2024-10-25

Title

Ajar in5 Embed < 3.1.4 - Unauthenticated Arbitrary File Upload

Published

2025-01-03

Title

JobBoard Job listing < 1.2.7 - Unauthenticated Arbitrary File Upload

Published

2014-08-01

Title

Amoveo - Arbitrary File Upload