CVE-2026-40725

Description

Unauthenticated PHP Object Injection in WooCommerce Product Filters < 2.0.6 versions.

References

• https://patchstack.com/database/wordpress/plugin/woocommerce-product-filters/vulnerability/wordpress-woocommerce-product-filters-plugin-2-0-6-php-object-injection-vulnerability?_s_id=cve