Vulnerabilities and security researches forprintful-shipping-for-woocommerce printful-shipping-for-woocommerce

Jun 10, 2024

CVE, Research URL: CVE-2022-47168
Home page URL: Security reports for Printful Integration for WooCommerce
Application: Printful Integration for WooCommerce
Date: Dec 13, 2024
Research Description: Missing Authorization vulnerability in Printful Printful Integration for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Printful Integration for WooCommerce: from n/a through 2.2.3.
Affected versions: Min -, max -.
Status: vulnerable

Jun 07, 2024

CVE, Research URL: 56e2e29d6f8e227365e1c85d6026fc3075cbeb15
Home page URL: Security reports for Printful Integration for WooCommerce
Application: Printful Integration for WooCommerce
Date: Aug 11, 2023
Research Description: Printful Integration for WooCommerce [printful-shipping-for-woocommerce] < 2.2.3 WordPress Printful Integration for WooCommerce Plugin <= 2.2.2 is vulnerable to Broken Access Control No patched version is available. No reply from the vendor. Lana Codes discovered and reported this Broken Access Control vulnerability in WordPress Printful Integration for WooCommerce Plugin. A broken access control issue refers to a missing authorization, authentication or nonce token check in a function that could lead to an unprivileged user to executing a certain higher privileged action. This vulnerability has not been known to be fixed yet.
Affected versions: Min -, max -.
Status: vulnerable