PT-2026-4456 · Imaginate Solutions+1 · File Uploads Addon For Woocommerce+1

Arif Shaikh

Publicado

2026-01-23

Atualizado

2026-01-24

CVE-2026-24625

CVSS v3.1

5.3

Média

Vetor

AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Name of the Vulnerable Software and Affected Versions Imaginate Solutions File Uploads Addon for WooCommerce versions through 1.7.3

Description The File Uploads Addon for WooCommerce contains a flaw related to incorrectly configured access control security levels, potentially allowing unauthorized access. The issue involves a missing authorization check.

Recommendations Update Imaginate Solutions File Uploads Addon for WooCommerce to a version later than 1.7.3.

Correção

Missing Authorization

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-862

Identificadores relacionados

CVE-2026-24625

Produtos afetados

File Uploads Addon For Woocommerce

Woocommerce

PT-2026-4456 · Imaginate Solutions+1 · File Uploads Addon For Woocommerce+1

CVE-2026-24625

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 6