Authorization Flaw in Allada T-shirt Designer for WooCommerce by ORION

CVE-2025-22363

Summary

A missing authorization vulnerability exists in the Allada T-shirt Designer for WooCommerce by ORION, allowing unauthorized users to access restricted functionalities. This flaw can be exploited by attackers to gain privileges that should only be available to authenticated users. The affected versions, from n/a up to 1.1, could potentially lead to harmful modifications and data exposure, highlighting the importance of securing user access controls within this plugin.

References