cleantalk
Vulnerabilities and Security Researches

WooPayments: Integrated WooCommerce Payments, CVE-2023-51503

CVE, Research URL

CVE-2023-51503

Home page URL

Security reports for WooPayments: Integrated WooCommerce Payments

Application

WooPayments: Integrated WooCommerce Payments

Published on
Dec 31, 2023
Research Description
Authorization Bypass Through User-Controlled Key vulnerability in Automattic WooPayments – Fully Integrated Solution Built and Supported by Woo.This issue affects WooPayments – Fully Integrated Solution Built and Supported by Woo: from n/a through 6.9.2.
Affected versions
Min -, max 6.7.0.
Status
vulnerable
Previous vulnerability researches
WooPayments: Integrated WooCommerce Payments (1ad997f7b769fb925cf6bedd63b85b914e27cfc8) , Jun 07, 2024
WooPayments: Integrated WooCommerce Payments (CVE-2023-28121) , Jun 07, 2024
WooPayments: Integrated WooCommerce Payments (CVE-2023-35915) , Jun 07, 2024
WooPayments: Integrated WooCommerce Payments (CVE-2023-35916) , Jun 07, 2024
WooPayments: Integrated WooCommerce Payments (CVE-2023-51503) , Jun 07, 2024
New vulnerability
WC Pickup Store (CVE-2025-47634) , Jul 07, 2025
MF Plus WPML (CVE-2025-49431) , Jul 07, 2025
Cool fade popup (CVE-2025-30947) , Jul 07, 2025
MyRewards – Loyalty Points and Rewards for WooCommerce – Reward orders, referrals, product reviews and more (CVE-2025-24757) , Jul 06, 2025
File Manager (CVE-2025-27358) , Jul 06, 2025