Volerion logoVolerion
Volerion logoVolerion

OnPay.io for WooCommerce Missing Authorization Vulnerability

Vulnerability

A missing authorization vulnerability has been identified in the OnPay.io for WooCommerce plugin, specifically in versions through 1.0.47. This vulnerability arises from incorrectly configured access control security levels, allowing unauthorized access to certain functionalities or data.

Impact

Exploitation of this vulnerability could lead to unauthorized actions being performed or data being accessed without proper permissions, due to the broken access control.

Added: Dec 16, 2025, 9:43 AM
Updated: Dec 16, 2025, 2:55 PM

Vulnerability Rating

Custom Algorithm
spread
0.0
impact
5.0
exploitability
6.6
remediation
0.0
relevance
1.4
threat
0.0
urgency
2.9
incentive
1.7

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.