Addonify Floating Cart For WooCommerce: Unauthorized Access to Settings

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

6.5

Addonify Floating Cart For WooCommerce: Unauthorized Access to Settings

CVE-2025-68025

Summary

The Addonify Floating Cart For WooCommerce plugin has a security issue that allows unauthorized users to access and modify settings. This means that someone with the wrong permissions can make changes to the plugin's configuration. To stay secure, update the plugin to version 1.2.18 or later.

Original title

Missing Authorization vulnerability in Addonify Addonify Floating Cart For WooCommerce addonify-floating-cart allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affe...

Original description

nvd CVSS3.1 6.5

Vulnerability type

CWE-862 Missing Authorization

https://patchstack.com/database/Wordpress/Plugin/addonify-floating-cart/vulnerab...

Published: 20 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026