← Back

Product Expiry For Woocommerce

product_expiry_for_woocommerce

Vendor: Webcodingplace • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2024-0201
1Webcodingplace
1Product Expiry For Woocommerce
Apr 8, 2026
Jan 3, 2024
N/A· v4
4.3 MEDIUM· v3
N/A· v2
The Product Expiry for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'save_settings' function in versions up to, and including, 2.5. This mak...Show more
The Product Expiry for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to a missing capability check on the 'save_settings' function in versions up to, and including, 2.5. This makes it possible for authenticated attackers, with subscriber-level permissions or above to update plugin settings. CVE-2023-52179 appears to be a duplicate of this issue.Show less