PT-2026-4423 · Woocommerce+1 · Woocommerce+1

Theviper

Publicado

2026-01-23

Atualizado

2026-01-24

CVE-2026-24585

CVSS v3.1

6.5

Média

Vetor

AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions Hyyan WooCommerce Polylang Integration versions through 1.5.0

Description A missing authorization issue exists in Hyyan WooCommerce Polylang Integration. The issue is due to incorrectly configured access control security levels, potentially allowing unauthorized access. The affected component is the woo-poly-integration.

Recommendations Update Hyyan WooCommerce Polylang Integration to a version later than 1.5.0.

Correção

Missing Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-862

Identificadores relacionados

CVE-2026-24585

Produtos afetados

Hyyan Woocommerce Polylang Integration

Woocommerce

PT-2026-4423 · Woocommerce+1 · Woocommerce+1

CVE-2026-24585

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 3