PT-2026-20688 · WordPress · Wiserreview Product Reviews For Woocommerce

Legion Hunter

Publicado

2026-02-19

Atualizado

2026-02-19

CVE-2026-25318

CVSS v3.1

4.3

Média

Vetor

AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:N

Name of the Vulnerable Software and Affected Versions WiserReview Product Reviews for WooCommerce versions through 2.9

Description An issue exists in WiserReview Product Reviews for WooCommerce related to incorrectly configured access control security levels, potentially allowing unauthorized access. The issue involves a missing authorization check.

Recommendations Update WiserReview Product Reviews for WooCommerce to a version newer than 2.9.

Correção

Missing Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-862

Identificadores relacionados

CVE-2026-25318

Produtos afetados

Wiserreview Product Reviews For Woocommerce

PT-2026-20688 · WordPress · Wiserreview Product Reviews For Woocommerce

CVE-2026-25318

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3