WordPress StoreCustomizer – A plugin to Customize all WooCommerce Pages plugin <= 2.5.9 - Unauthenticated Reflected Cross-Site Scripting vulnerability

Unauthenticated Reflected Cross-Site Scripting vulnerability discovered by Asaf Mozes in WordPress Plugin StoreCustomizer versions = 2.5.9...

CVE-2026-27046

Missing Authorization vulnerability in Kaira StoreCustomizer woocustomizer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects StoreCustomizer: from n/a through = 2.6.3...

EUVD-2026-15761

Missing Authorization vulnerability in Kaira StoreCustomizer woocustomizer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects StoreCustomizer: from n/a through = 2.6.3...

CVE-2026-27046

Missing Authorization vulnerability in Kaira StoreCustomizer woocustomizer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects StoreCustomizer: from n/a through = 2.6.3...

CVE-2026-27046

CVE-2026-27046: A Missing Authorization flaw in the StoreCustomizer plugin (StoreCustomizer – A plugin to Customize all WooCommerce Pages) affects WordPress installations using StoreCustomizer versions up to 2.6.3. The issue permits unauthenticated access due to misconfigured access controls, wit...

CVE-2026-27046 WordPress StoreCustomizer plugin <= 2.6.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Kaira StoreCustomizer woocustomizer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects StoreCustomizer: from n/a through = 2.6.3...

CVE-2026-27046 WordPress StoreCustomizer plugin <= 2.6.3 - Broken Access Control vulnerability

Missing Authorization vulnerability in Kaira StoreCustomizer woocustomizer allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects StoreCustomizer: from n/a through = 2.6.3...

PT-2026-27966

Name of the Vulnerable Software and Affected Versions Kaira StoreCustomizer versions prior to 2.6.4 Description An authorization issue exists in Kaira StoreCustomizer woocustomizer, allowing exploitation of incorrectly configured access control security levels. The issue affects the way access...

WordPress plugin StoreCustomizer 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application that can be install...

WordPress StoreCustomizer plugin <= 2.6.3 - Broken Access Control vulnerability

Broken Access Control vulnerability discovered by PPzzAArr in WordPress Plugin StoreCustomizer versions = 2.6.3...

WordPress StoreCustomizer – WooCommerce plugin to Customize all WooCommerce Pages Plugin < 2.5.2 is vulnerable to Cross Site Scripting (XSS)

Software StoreCustomizer – WooCommerce plugin to Customize all WooCommerce Pages Type Plugin Vulnerable versions 2.5.2 Fixed in 2.5.2 OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2023-33999 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID...

WordPress StoreCustomizer – WooCommerce plugin to Customize all WooCommerce Pages plugin < 2.3.8 - Toggle The Debug Mode via Cross-Site Request Forgery (CSRF) vulnerability

Toggle The Debug Mode via Cross-Site Request Forgery CSRF vulnerability discovered in WordPress StoreCustomizer – WooCommerce plugin to Customize all WooCommerce Pages plugin versions 2.3.8. Solution Update the WordPress StoreCustomizer – WooCommerce plugin to Customize all WooCommerce Pages plug...

WordPress StoreCustomizer – WooCommerce plugin to Customize all WooCommerce Pages plugin < 2.3.8 - Sensitive Information Disclosure vulnerability

Sensitive Information Disclosure vulnerability discovered in WordPress StoreCustomizer – WooCommerce plugin to Customize all WooCommerce Pages plugin versions 2.3.8. Solution Update the WordPress StoreCustomizer – WooCommerce plugin to Customize all WooCommerce Pages plugin to the latest availabl...