Primary

Context

Dotstore Fraud Prevention for WooCommerce Missing Authorization Vulnerability Allowing Arbitrary Content Deletion

Vulnerability

A missing authorization vulnerability has been identified in the Dotstore Fraud Prevention for WooCommerce plugin, affecting versions through 2.3.3. This vulnerability arises from incorrectly configured access control, allowing unauthorized users to delete arbitrary content from affected websites, such as posts, pages, or media.

Impact

Exploitation of this vulnerability could lead to unauthorized deletion of content from the WordPress site, including posts, pages, or media files.

Remediation

Users are advised to update the Dotstore Fraud Prevention for WooCommerce plugin to the latest version. If unable to update, consult with your hosting provider or web developer for assistance.

Added: Mar 19, 2026, 9:20 AM

Updated: Mar 19, 2026, 9:20 AM

Vulnerability Rating

Custom Algorithm

spread

1.6

impact

2.5

exploitability

7.6

remediation

7.9

relevance

4.1

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.6

impact

2.5

exploitability

7.6

remediation

7.9

relevance

4.1

threat

0.0

urgency

2.9

incentive

4.2

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dotstore Fraud Prevention for WooCommerce Missing Authorization Vulnerability Allowing Arbitrary Content Deletion

Vulnerability

Impact

Remediation

Affected Products

Dotstore Fraud Prevention For Woocommerce

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating