WooPayments WordPress Plugin Missing Authorization Vulnerability in Upe Appearance Ajax Function

A vulnerability exists in the WooPayments: Integrated WooCommerce Payments plugin for WordPress, affecting all versions through 10.5.1. The issue arises from a missing capability check in the 'save_upe_appearance_ajax' function, allowing unauthorized users to modify plugin settings. This flaw enables unauthenticated attackers to update plugin configurations, potentially leading to unauthorized changes in payment processing or other critical functionalities.

Impact

The vulnerability allows for unauthorized modification of plugin settings, which could disrupt payment processing or other essential functions of the WooCommerce store.

Reproduction

The vulnerability can be reproduced by sending a request to the 'save_upe_appearance_ajax' endpoint without the necessary authorization. This can be done by an unauthenticated user, as the function lacks proper capability checks to prevent unauthorized access.

Remediation

Users are advised to update the WooPayments: Integrated WooCommerce Payments plugin to version 10.6.0 or later, where this vulnerability has been patched.