Skip to main content

Bear Bulk Editor And Products Manager Professional For Woocommerce By Pluginus Net

1 CVEs product

Monthly

CVE-2026-1672 MEDIUM This Month

Cross-Site Request Forgery in BEAR - Bulk Editor and Products Manager Professional for WooCommerce (all versions up to 1.1.5) allows unauthenticated attackers to modify WooCommerce product data including prices, descriptions, and other fields by tricking administrators or shop managers into clicking a malicious link, due to missing nonce validation in the woobe_redraw_table_row() function. CVSS 6.5 reflects the high integrity impact; no public exploit code or active exploitation has been confirmed at analysis time.

WordPress CSRF Bear Bulk Editor And Products Manager Professional For Woocommerce By Pluginus Net
NVD
CVSS 3.1
6.5
EPSS
0.0%
EPSS 0% CVSS 6.5
MEDIUM This Month

Cross-Site Request Forgery in BEAR - Bulk Editor and Products Manager Professional for WooCommerce (all versions up to 1.1.5) allows unauthenticated attackers to modify WooCommerce product data including prices, descriptions, and other fields by tricking administrators or shop managers into clicking a malicious link, due to missing nonce validation in the woobe_redraw_table_row() function. CVSS 6.5 reflects the high integrity impact; no public exploit code or active exploitation has been confirmed at analysis time.

WordPress CSRF Bear Bulk Editor And Products Manager Professional For Woocommerce By Pluginus Net
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy