#LFI Vulnerability

1. HUSKY Products Filter Plugin Exposed: CVE-2025-1661 LFI Vulnerability Targets WooCommerce Sites

A critical, unauthenticated Local File Inclusion (LFI) vulnerability has been publicly documented for the HUSKY Products Filter Professional plugin for WooCommerce, designated as CVE-2025-1661. The flaw allows attackers to directly target WordPress sites by sending a malicious POST request to the `/wp-admin/admin-ajax....