Missing Authorization vulnerability in ChoPlugins Custom PC Builder Lite for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Custom PC Builder Lite for WooCommerce: from n/a through 1.0.1.
History

Tue, 20 May 2025 14:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Mon, 19 May 2025 18:30:00 +0000

Type Values Removed Values Added
Description Missing Authorization vulnerability in ChoPlugins Custom PC Builder Lite for WooCommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Custom PC Builder Lite for WooCommerce: from n/a through 1.0.1.
Title WordPress Custom PC Builder Lite for WooCommerce <= 1.0.1 - Settings Change Vulnerability
Weaknesses CWE-862
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published: 2025-05-19T18:17:37.698Z

Updated: 2025-05-19T18:37:20.827Z

Reserved: 2025-04-17T17:03:58.445Z

Link: CVE-2025-43838

cve-icon Vulnrichment

Updated: 2025-05-19T18:37:12.909Z

cve-icon NVD

Status : Awaiting Analysis

Published: 2025-05-19T19:15:50.993

Modified: 2025-05-21T20:25:16.407

Link: CVE-2025-43838

cve-icon Redhat

No data.