Missing Authorization Flaw in Booster for WooCommerce by Pluggabl
CVE-2025-64379

Currently unrated

Key Information:

Vendor

WordPress
Status
Booster For WooCommerce
Vendor
CVE Published:
13 November 2025

What is CVE-2025-64379?

A Missing Authorization vulnerability exists in Booster for WooCommerce, allowing unauthorized users to exploit incorrectly configured access controls. This issue affects versions up to 7.4.0, posing a risk for users who may inadvertently expose sensitive functionalities. It is crucial for site administrators to review their configurations and apply appropriate updates to mitigate exposure. Regular audits and monitoring are recommended to maintain a secure environment.

Affected Version(s)

Booster for WooCommerce <= n/a

References

https://vdp.patchstack.com/database/Wordpress/Plugin/wooc...
vdb-entry

Timeline

  • Vulnerability published

  • Vulnerability Reserved

Credit

Legion Hunter | Patchstack Bug Bounty Program
JSON
.
CVE-2025-64379 : Missing Authorization Flaw in Booster for WooCommerce by Pluggabl