CVE-2025-15484
UNKNOWN
NVD
CVSS Score
0
Severity
UNKNOWN
Published
Apr 01, 2026
Vendor
unknown
Description
The Order Notification for WooCommerce WordPress plugin before 3.6.3 overrides WooCommerce's permission checks to grant full access to all unauthenticated requests, enabling complete read/write access to store resources like products, coupons, and customers.