WordPress ViaBill – WooCommerce plugin <= 1.1.53 - Settings Change vulnerability

Description

A vulnerability identified as critical has been detected in ViaBill Plugin up to 1.1.53 on WordPress. Impacted is an unknown function. The manipulation leads to missing authorization.

Affected Products

Vendor	Product	Versions
ViaBill	ViaBill Plugin	n/a

References

https://patchstack.com/database/Wordpress/Plugin/viabill-woocommerce/vulnerability/wordpress-viabill-woocommerce-plugin-1-1-53-settings-change-vulnerability?_s_id=cve(vdb-entry)

Related News (1 articles)

Tier C

VulDB2h ago

CVE-2026-25469 | ViaBill Plugin up to 1.1.53 on WordPress authorization

→ No new info (linked only)

CISA KEV❌ No

Actively exploited✅ Yes

CWECWE-862

Published3/25/2026

Last enriched2h agov2

Trending Score41

Source articles2

Independent1

Info Completeness7/14

Missing: cvss, epss, kev, exploit, patch, iocs, mitre_attack

Community Vote

0 upvotes0 downvotes

No votes yet

Pin to Dashboard

Verification

State: unverified

Confidence: 0%

Version History

Last enriched 2h ago

v2Tier C2h ago

Updated severity to CRITICAL, corrected vendor and product names, and provided a more detailed description of the vulnerability.

descriptionvendorproductseverityactivelyExploited

via VulDB

v12h ago

Initial creation