[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$fzEMZ-Txx_59FjcmXqXrPkloZwWdhyBHbzjN0bhGiv8o":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":11,"severity":12,"cvss_score":13,"cvss_vector":14,"vuln_type":15,"published_date":16,"updated_date":17,"references":18,"days_to_patch":20},"CVE-2025-58972","barcode-scanner-with-inventory-order-manager-authenticated-shop-manager-directory-traversal","Barcode Scanner with Inventory & Order Manager \u003C= 1.10.4 - Authenticated (Shop Manager+) Directory Traversal","The Barcode Scanner (+Mobile App) – Inventory manager, Order fulfillment system, POS (Point of Sale) plugin for WordPress is vulnerable to Directory Traversal in all versions up to, and including, 1.10.4. This makes it possible for authenticated attackers, with Shop Manager-level access and above, to perform actions on files outside of the originally intended directory.","barcode-scanner-lite-pos-to-manage-products-inventory-and-orders",null,"\u003C=1.10.4","1.10.5","low",2.7,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:H\u002FUI:N\u002FS:U\u002FC:N\u002FI:L\u002FA:N","Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal')","2025-10-15 00:00:00","2025-10-29 15:56:51",[19],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Feb3a26c7-8693-4a1d-a2b9-c548ef3c0ee0?source=api-prod",15]