Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2025-32226

Missing Authorization vulnerability in Anzar Ahmed Display product variations dropdown on shop page allows Exploiting Incorrectly Configured Access Control Security Levels. This issue affects Display product variations dropdown on shop page: from n/a through 1.1.3.

Published

2025-04-04T16:15:31.863

Last Modified

2025-04-07T14:18:15.560

Status

Awaiting Analysis

Source

[email protected]

Severity

CVSSv3.1: 4.3 (MEDIUM)

Weaknesses

Type: Secondary
CWE-862

Affected Vendors & Products

References

https://patchstack.com/database/wordpress/plugin/display-product-variations-dropdown-on-shop-page/vulnerability/wordpress-display-product-variations-dropdown-on-shop-page-plugin-1-1-3-broken-access-control-vulnerability?_s_id=cve ([email protected])