CVE-2025-32234

Summary

CVE-2025-32234 denotes a critical authorization vulnerability in the AdMail – Multilingual Back in-Stock Notifier plugin for WooCommerce. This issue arises due to incorrectly configured access control security levels, enabling unauthorized users to gain excessive privileges and potentially exploit the system. The vulnerability affects the AdMail plugin from versions n/a through 1.7.0. Successful exploitation can lead to serious consequences, including data breaches and unauthorized modifications. It is strongly recommended that affected users update to the latest, secure version of the plugin to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.