SQL Injection Vulnerability in WooCommerce Cart Tracking by wpdever
CVE-2025-47538
7.6HIGH
What is CVE-2025-47538?
An SQL Injection vulnerability exists in the Cart tracking for WooCommerce plugin created by wpdever, allowing attackers to execute arbitrary SQL commands. This issue affects versions from n/a through 1.0.17, posing a significant risk to database security when exploited. Proper validation and sanitization measures are crucial to mitigate the impact of such vulnerabilities.
Affected Version(s)
Cart tracking for WooCommerce <= 1.0.17