EPSS
Percentile
38.9%
The plugin does not have authorisation in some AJAX actions, allowing any authenticated users, such as subscriber to update the price of any WooCommerce products
blog.nintechnet.com/vulnerabilities-fixed-in-wordpress-b2bking-plugin/