Medium 4.3
2025-08-14< 1.48.1
CVE-2025-54675
YITH WooCommerce Popup
Minimum safe version
1.48.1
Update to 1.48.1 or later to address 4 fixable vulnerabilities
Latest available1.55.0 ✓
N/A
2022-11-11< 1.21.1
YITH plugins by YITHEMES <= (Various Versions) - Cross-Site Request Forgery
N/A
2022-11-11< 1.21.1
YITH plugins by YITHEMES <= (Various Versions) - Missing Authorization
N/A
< 1.21.1
WordPress YITH WooCommerce Popup Plugin <= 1.21.0 is vulnerable to Cross Site Request Forgery (CSRF)