[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"$f4mbbpiBE8L5AR9qf-Tjx0Tg7FHC6nqbGotPELi9dslc":3},{"id":4,"url_slug":5,"title":6,"description":7,"plugin_slug":8,"theme_slug":9,"affected_versions":10,"patched_in_version":9,"severity":11,"cvss_score":12,"cvss_vector":13,"vuln_type":14,"published_date":15,"updated_date":16,"references":17,"days_to_patch":9},"CVE-2025-60243","selling-commander-for-woocommerce-unauthenticated-privilege-escalation","Selling Commander for WooCommerce \u003C= 1.2.46 - Unauthenticated Privilege Escalation","The Selling Commander for WooCommerce – connector plugin plugin for WordPress is vulnerable to Privilege Escalation in all versions up to, and including, 1.2.46. This makes it possible for unauthenticated attackers to elevate their privileges to that of an administrator.","selling-commander-connector",null,"\u003C=1.2.46","critical",9.8,"CVSS:3.1\u002FAV:N\u002FAC:L\u002FPR:N\u002FUI:N\u002FS:U\u002FC:H\u002FI:H\u002FA:H","Incorrect Privilege Assignment","2025-06-19 00:00:00","2025-11-12 13:50:45",[18],"https:\u002F\u002Fwww.wordfence.com\u002Fthreat-intel\u002Fvulnerabilities\u002Fid\u002Fa31af69d-f783-4d43-a14c-e153be3ee57c?source=api-prod"]