Cybersecurity investigators have revealed a significant unaddressed security vulnerability affecting the TI WooCommerce Wishlist plugin for WordPress, which could be leveraged by unauthenticated adversaries to upload random files.
The TI WooCommerce Wishlist, boasting more than 100,000 active installations, serves as a mechanism for e-commerce site users to preserve their preferred products for future reference and to share the lists on social platforms.