YayExtra – WooCommerce Extra Product Options

Vulnerabilities 3Slug yayextraLatest version 2.0.2WordPress.org →

Minimum safe version

1.5.6

Update to 1.5.6 or later to address 3 fixable vulnerabilities

Latest available2.0.2 ✓

High 7.6

2025-07-16< 1.5.6

CVE-2025-48299

High 7.6

2025-04-01< 1.5.3

CVE-2025-31415

Critical 9.8

2024-08-05< 1.3.8

WordPress YayExtra Plugin <= 1.3.7 is vulnerable to Arbitrary File Upload