Skip to main content

Ai Product Search For Woocommerce 8211 Motive Commerce Search

1 CVEs product

Monthly

CVE-2026-42664 HIGH This Week

Unauthenticated broken access control in the AI Product Search for WooCommerce - Motive Commerce Search WordPress plugin (versions <= 1.38.2) allows remote attackers to invoke privileged functionality without authentication, leading to data integrity tampering and significant availability impact on affected WooCommerce storefronts. Reported by Patchstack with no public exploit identified at time of analysis and no CISA KEV listing, the issue stems from missing authorization checks (CWE-862) on plugin endpoints reachable over the network with no user interaction.

Authentication Bypass WordPress Ai Product Search For Woocommerce 8211 Motive Commerce Search
NVD
CVSS 3.1
8.2
EPSS
0.3%
EPSS 0% CVSS 8.2
HIGH This Week

Unauthenticated broken access control in the AI Product Search for WooCommerce - Motive Commerce Search WordPress plugin (versions <= 1.38.2) allows remote attackers to invoke privileged functionality without authentication, leading to data integrity tampering and significant availability impact on affected WooCommerce storefronts. Reported by Patchstack with no public exploit identified at time of analysis and no CISA KEV listing, the issue stems from missing authorization checks (CWE-862) on plugin endpoints reachable over the network with no user interaction.

Authentication Bypass WordPress Ai Product Search For Woocommerce 8211 Motive Commerce Search
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy