Vulnerabilities and security researches foreasyship-woocommerce-shipping-rates easyship-woocommerce-shipping-rates

Jun 07, 2024

CVE, Research URL: 5ba68c39c968b58ccd7fa1d78d5c30afbdc14da9
Home page URL: Security reports for Easyship WooCommerce Shipping Rates
Application: Easyship WooCommerce Shipping Rates
Date: Jul 17, 2023
Research Description: Easyship WooCommerce Shipping Rates [easyship-woocommerce-shipping-rates] < 0.9.1 WordPress Easyship WooCommerce Shipping Rates Plugin <= 0.8.9 is vulnerable to Broken Access Control No patched version is available. No reply from the vendor. Friday discovered and reported this Broken Access Control vulnerability in WordPress Easyship WooCommerce Shipping Rates Plugin. This vulnerability has not been known to be fixed yet.
Affected versions: max 0.9.1.
Status: vulnerable

Jun 10, 2024

CVE, Research URL: CVE-2023-37989
Home page URL: Security reports for Easyship WooCommerce Shipping Rates
Application: Easyship WooCommerce Shipping Rates
Date: Dec 13, 2024
Research Description: Missing Authorization vulnerability in Easyship Easyship WooCommerce Shipping Rates allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Easyship WooCommerce Shipping Rates: from n/a through 0.9.0.
Affected versions: max 0.9.1.
Status: vulnerable