exploitDog

CVE-2025-60077

Опубликовано: 18 дек. 2025

Источник: nvd

CVSS3: 7.5

EPSS Низкий

Описание

Missing Authorization vulnerability in YayCommerce YayPricing yaypricing allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects YayPricing: from n/a through <= 3.5.3.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/yaypricing/vulnerability/wordpress-yaypricing-plugin-3-5-3-broken-access-control-vulnerability?_s_id=cve

EPSS

Процентиль: 14%

0.00045

Низкий

7.5 High

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-h7rr-j9gg-jwqc

CVSS3: 7.5

github

около 2 месяцев назад

Missing Authorization vulnerability in YayCommerce YayPricing yaypricing allows Accessing Functionality Not Properly Constrained by ACLs.This issue affects YayPricing: from n/a through <= 3.5.3.

EPSS

Процентиль: 14%

0.00045

Низкий

7.5 High

CVSS3

Дефекты

CWE-862