CVE-2024-56009

Name of the Vulnerable Software and Affected Versions Spreadr Woocommerce versions 1.0.0 through 1.0.4

Description The issue is related to a Missing Authorization vulnerability, which allows accessing functionality not properly constrained by ACLs. This means that users can access certain functions that they should not have access to due to improper access control list (ACL) constraints.

Recommendations For versions 1.0.0 through 1.0.4, update to a version later than 1.0.4 to resolve the issue. As a temporary workaround, consider restricting access to sensitive functionality to minimize the risk of exploitation.