Skip to main content

Woocommerce Multiple Customer Addresses Shipping

1 CVEs product

Monthly

CVE-2023-0865 HIGH POC This Week

The WooCommerce Multiple Customer Addresses & Shipping WordPress plugin before 21.7 does not ensure that the address to add/update/retrieve/delete and duplicate belong to the user making the request,. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Authentication Bypass Woocommerce Multiple Customer Addresses Shipping
NVD WPScan
CVSS 3.1
8.8
EPSS
1.2%
EPSS 1% CVSS 8.8
HIGH POC This Week

The WooCommerce Multiple Customer Addresses & Shipping WordPress plugin before 21.7 does not ensure that the address to add/update/retrieve/delete and duplicate belong to the user making the request,. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

WordPress Authentication Bypass Woocommerce Multiple Customer Addresses Shipping
NVD WPScan

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy