GHSA-9p3j-8vjx-24pqMediumCVSS 6.5
Unauthenticated Insecure Direct Object References (IDOR) in Payment Gateway Based Fees and...
🔗 CVE IDs covered (1)
📋 Description
Unauthenticated Insecure Direct Object References (IDOR) in Payment Gateway Based Fees and Discounts for WooCommerce <= 3.0.0 versions.
🔗 References (3)
- https://nvd.nist.gov/vuln/detail/CVE-2026-56048
- https://patchstack.com/database/wordpress/plugin/checkout-fees-for-woocommerce/vulnerability/wordpress-payment-gateway-based-fees-and-discounts-for-woocommerce-plugin-3-0-0-insecure-direct-object-references-idor-vulnerability?_s_id=cve
- https://github.com/advisories/GHSA-9p3j-8vjx-24pq