Missing Authorization vulnerability in YITH WooCommerce Gift Cards Premium
CVE-2022-44633
6.5MEDIUM
Key Information:
- Vendor
WordPress
- Vendor
- CVE Published:
- 11 April 2024
What is CVE-2022-44633?
A vulnerability exists in YITH WooCommerce Gift Cards Premium, where missing authorization checks allow unauthorized users to create gift cards. This can lead to serious security risks, including the potential for stored cross-site scripting (XSS) attacks. It is essential for users of affected versions to ensure proper controls are in place to mitigate these risks.
Affected Version(s)
YITH WooCommerce Gift Cards Premium <= 3.23.1