exploitDog

CVE-2025-68018

Опубликовано: 22 янв. 2026

Источник: nvd

CVSS3: 9.4

EPSS Низкий

Описание

Missing Authorization vulnerability in ilmosys Order Listener for WooCommerce woc-order-alert allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Order Listener for WooCommerce: from n/a through <= 3.6.1.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/woc-order-alert/vulnerability/wordpress-order-listener-for-woocommerce-plugin-3-6-0-broken-access-control-vulnerability?_s_id=cve

EPSS

Процентиль: 17%

0.00053

Низкий

9.4 Critical

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-fvvm-j29r-fjc5

CVSS3: 9.4

github

16 дней назад

Missing Authorization vulnerability in ilmosys Order Listener for WooCommerce woc-order-alert allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Order Listener for WooCommerce: from n/a through <= 3.6.1.

EPSS

Процентиль: 17%

0.00053

Низкий

9.4 Critical

CVSS3

Дефекты

CWE-862