exploitDog

CVE-2025-50008

Опубликовано: 20 июн. 2025

Источник: nvd

CVSS3: 5.4

EPSS Низкий

Описание

Missing Authorization vulnerability in cscode WooCommerce Manager – Customize and Control Cart page, Add to Cart button, Checkout fields easily allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WooCommerce Manager – Customize and Control Cart page, Add to Cart button, Checkout fields easily: from n/a through 1.2.4.5.

Ссылки

https://patchstack.com/database/wordpress/plugin/innovs-woo-manager/vulnerability/wordpress-woocommerce-manager-customize-and-control-cart-page-add-to-cart-button-checkout-fields-easily-plugin-1-2-4-5-broken-access-control-vulnerability?_s_id=cve

EPSS

Процентиль: 16%

0.00051

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-2j94-r3fw-9pw5

CVSS3: 5.4

github

8 месяцев назад

Missing Authorization vulnerability in cscode WooCommerce Manager – Customize and Control Cart page, Add to Cart button, Checkout fields easily allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects WooCommerce Manager – Customize and Control Cart page, Add to Cart button, Checkout fields easily: from n/a through 1.2.4.5.

EPSS

Процентиль: 16%

0.00051

Низкий

5.4 Medium

CVSS3

Дефекты

CWE-862