WordPress Plugin Vulnerabilities

WooCommerce Checkout Manager < 7.3.1 - Missing Authorization

Description

The WooCommerce Checkout Manager plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on the ajax_order_attachment_upload and ajax_delete_attachment functions hooked via AJAX in versions up to, and including, 7.3.0. This makes it possible for unauthenticated attackers to update arbitrary order attachments and delete them.

Affects Plugins

Plugin icon
woocommerce-checkout-manager
Fixed in 7.3.1

References

CVE
CVE-2023-47681
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/fffd7d50-6563-4652-8fae-3fe698125c59

Classification

Type
NO AUTHORISATION
OWASP top 10
A5: Broken Access Control
CWE
CWE-862
CVSS
6.5 (medium)

Miscellaneous

Original Researcher
Rafie Muhammad
Verified
No
WPVDB ID
23a21bf4-0617-4ad5-85f0-8bdfd9b90d4b

Timeline

Publicly Published
2023-11-09 (about 2 years ago)
Added
2023-11-24 (about 2 years ago)
Last Updated
2024-01-22 (about 2 years ago)

Other

Published
Title
Published
2025-03-24
Title
Advanced Dewplayer <= 1.6 - Missing Authorization
Published
2025-04-16
Title
WP Subscription Forms < 1.2.4 - Missing Authorization
Published
2021-11-10
Title
Meks Easy Photo Feed Widget < 1.2.4 - Subscriber+ Settings Update to Stored XSS
Published
2025-03-06
Title
EventPrime – Events Calendar, Bookings and Tickets < 4.0.7.4 - Missing Authorization to Authenticated (Subscriber+) Event Attendees Export
Published
2026-01-08
Title
Forminator Forms < 1.49.2 - Forminator User+ CSV Export