Really Simple Security logo

Log out
Get PRO

Latest

Access violation vulnerability in B2BKing — Ultimate WooCommerce Wholesale and B2B Solution — Wholesale Order Form, Catalog Mode, Dynamic Pricing & More 4.6.00

  • Severity: medium-risk
  • Status: Fixed
  • Publication: June 3, 2023

The B2BKing plugin for WordPress has a security vulnerability that could allow a person with certain user permissions to change the prices of any product on the website. This vulnerability affects versions of the plugin up to and including 4.6.00 and is caused by the lack of a feature that should be checking for authorization.

Detected in:

B2BKing — Ultimate WooCommerce B2B and Wholesale Solution — Dynamic Pricing, Wholesale Order Form & More fixed vulnerable versions:
B2BKing — Ultimate WooCommerce Wholesale and B2B Solution — Wholesale Order Form, Catalog Mode, Dynamic Pricing & More fixed vulnerable versions: >= * <= 4.6.00

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.