PT-2026-25876 · Woocommerce · Booster For Woocommerce

Nguyen Ba Khanh

Published

2026-03-17

Updated

2026-03-17

CVE-2026-32586

CVSS v3.1

5.3

Medium

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:L

Name of the Vulnerable Software and Affected Versions Booster for WooCommerce versions prior to 7.11.3

Description A missing authorization issue exists in Pluggabl Booster for WooCommerce. This allows exploitation of incorrectly configured access control security levels. The issue concerns a flaw in how access control is managed, potentially allowing unauthorized actions.

Recommendations Update Booster for WooCommerce to version 7.11.3 or later.

Fix

Missing Authorization

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-862

Related Identifiers

CVE-2026-32586

Affected Products

Booster For Woocommerce

PT-2026-25876 · Woocommerce · Booster For Woocommerce

CVE-2026-32586

Weakness Enumeration

Related Identifiers

Affected Products

References · 6