Home

Description

Improper Control of Generation of Code ('Code Injection') vulnerability in acowebs Dynamic Pricing With Discount Rules for WooCommerce aco-woo-dynamic-pricing allows Code Injection.This issue affects Dynamic Pricing With Discount Rules for WooCommerce: from n/a through <= 4.5.9.

PUBLISHED Reserved 2025-05-07 | Published 2025-11-06 | Updated 2025-11-06 | Assigner Patchstack

Problem types

Improper Control of Generation of Code ('Code Injection')

Product status

Default status
unaffected

Any version
affected

Credits

tratt | Patchstack Bug Bounty Program finder

References

vdp.patchstack.com/...arbitrary-code-execution-vulnerability vdb-entry

cve.org (CVE-2025-47588)

nvd.nist.gov (CVE-2025-47588)

Download JSON