The Woocommerce Customers Order History plugin for WordPress has a security issue that allows unauthorized access. This is because a certain function does not check for proper permissions in all versions up to 5.2.2. This means that attackers who are logged in and have at least subscriber-level access can perform actions that they should not be able to.