PT-2026-25876 · Woocommerce · Booster For Woocommerce

Nguyen Ba Khanh

Publicado

2026-03-17

Atualizado

2026-03-17

CVE-2026-32586

CVSS v3.1

5.3

Média

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions Booster for WooCommerce versions prior to 7.11.3

Description A missing authorization issue exists in Pluggabl Booster for WooCommerce. This allows exploitation of incorrectly configured access control security levels. The issue concerns a flaw in how access control is managed, potentially allowing unauthorized actions.

Recommendations Update Booster for WooCommerce to version 7.11.3 or later.

Correção

Missing Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-862

Identificadores relacionados

CVE-2026-32586

Produtos afetados

Booster For Woocommerce

PT-2026-25876 · Woocommerce · Booster For Woocommerce

CVE-2026-32586

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6