PT-2025-29999 · WordPress · Woocommerce Refund/Exchange With Rma - Warranty Management
Ngô Thái An
+2
·
Published
2025-07-18
·
Updated
2025-07-18
·
CVE-2025-6222
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
WooCommerce Refund And Exchange with RMA - Warranty Management, Refund Policy, Manage User Wallet versions up to and including 3.2.6
Description
The WooCommerce Refund And Exchange with RMA - Warranty Management, Refund Policy, Manage User Wallet theme for WordPress is susceptible to arbitrary file uploads due to the absence of file type validation in the
ced rnx order exchange attach files function. This allows unauthenticated attackers to upload arbitrary files to the affected server, potentially leading to remote code execution.Recommendations
WooCommerce Refund And Exchange with RMA - Warranty Management, Refund Policy, Manage User Wallet versions prior to 3.2.7 should be updated.
Fix
RCE
Unrestricted File Upload
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Woocommerce Refund/Exchange With Rma - Warranty Management