Primary

Context

Mediaticus Subaccounts for WooCommerce Authentication Bypass Vulnerability

Vulnerability

Patched

An authentication bypass vulnerability has been identified in the Mediaticus Subaccounts for WooCommerce plugin, affecting versions through 1.6.6. This vulnerability allows for authentication abuse, potentially leading to unauthorized actions being performed by users with lower privileges.

Impact

Exploitation of this vulnerability could allow users with lower privileges to gain unauthorized access or perform actions reserved for higher privileged users, such as administrative tasks.

Remediation

Users of the Mediaticus Subaccounts for WooCommerce plugin should update to version 1.6.7 or later. Patchstack users can enable auto-update for vulnerable plugins.

Added: Jun 9, 2025, 7:46 PM

Updated: Jun 9, 2025, 7:46 PM

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

5.0

exploitability

5.4

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.0

impact

5.0

exploitability

5.4

remediation

7.9

relevance

0.0

threat

0.0

urgency

2.9

incentive

1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Mediaticus Subaccounts for WooCommerce Authentication Bypass Vulnerability

Vulnerability

Impact

Remediation

Affected Products

mediaticus Subaccounts for WooCommerce

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating