Checkout Files Upload for WooCommerce < 2.2.2 – Unauthenticated Stored Cross-Site Scripting | CVE 2025-4212 | Plugin Vulnerabilities

Description

The Checkout Files Upload for WooCommerce plugin for WordPress is vulnerable to Stored Cross-Site Scripting via file uploads in all versions up to, and including, 2.2.1 due to insufficient input sanitization and output escaping. This makes it possible for unauthenticated attackers to inject arbitrary web scripts in image files that will execute whenever a user accesses the injected page.

Affects Plugins

checkout-files-upload-woocommerce

Fixed in 2.2.2

References

CVE

URL

https://www.wordfence.com/threat-intel/vulnerabilities/id/09d9785a-db71-4735-b86b-7fa10cf36a0b

Classification

Type

XSS

OWASP top 10

A7: Cross-Site Scripting (XSS)

CWE

CVSS

Miscellaneous

Original Researcher

Milinxee

Verified

No

WPVDB ID

ce8edd7b-0e9c-42d4-a79c-1d3fbaee47c8

Timeline

Publicly Published

2025-11-17 (about 4 months ago)

Added

2025-11-17 (about 4 months ago)

Last Updated

2025-11-18 (about 4 months ago)

Other

Published

Title

Published

2024-04-15

Title

Shortcodes and extra features for Phlox theme < 2.15.8 - Contributor+ XSS via HTML Element

Published

2023-11-10

Title

Sponsors <= 3.5.0 - Authenticated (Contributor+) Stored Cross-Site Scripting via Shortcode

Published

2025-10-08

Title

Betheme < 28.1.7 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'page_title'

Published

2025-10-02

Title

Auto Bulb Finder for WordPress < 2.9.0 - Authenticated (Contributor+) Stored Cross-Site Scripting

Published

2025-03-25

Title

Advanced iFrame < 2025.3 - Authenticated (Contributor+) Stored Cross-Site Scripting