Primary

Context

Ni WooCommerce Cost Of Goods Missing Authorization Vulnerability

Vulnerability

A broken access control vulnerability has been identified in the Ni WooCommerce Cost Of Goods plugin, affecting versions through 3.2.8. This vulnerability arises from missing authorization checks, which can be exploited by users with lower privileges to perform actions reserved for higher privileged users.

Impact

Exploitation of this vulnerability could allow users with subscriber privileges to access or modify data or perform actions that should be restricted to users with higher privileges.

Remediation

Users of the Ni WooCommerce Cost Of Goods plugin should update to version 3.2.9 or later to address this vulnerability.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

0.0

impact

5.0

exploitability

5.2

remediation

7.7

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Ni WooCommerce Cost Of Goods Missing Authorization Vulnerability

Vulnerability

Impact

Remediation

Affected Products

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating