GHSA-cvgq-5wj4-fc6xMediumCVSS 6.5
Missing Authorization vulnerability in EDGARROJAS Extra Product Options Builder for WooCommerce...
🔗 CVE IDs covered (1)
📋 Description
Missing Authorization vulnerability in EDGARROJAS Extra Product Options Builder for WooCommerce additional-product-fields-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Extra Product Options Builder for WooCommerce: from n/a through <= 1.2.167.
🔗 References (3)
- https://nvd.nist.gov/vuln/detail/CVE-2026-57390
- https://patchstack.com/database/Wordpress/Plugin/additional-product-fields-for-woocommerce/vulnerability/wordpress-extra-product-options-builder-for-woocommerce-plugin-1-2-167-broken-access-control-vulnerability?_s_id=cve
- https://github.com/advisories/GHSA-cvgq-5wj4-fc6x