Medium severity4.3NVD Advisory· Published Jan 16, 2024· Updated Jun 17, 2026
CVE-2022-0775
CVE-2022-0775
Description
The WooCommerce WordPress plugin before 6.2.1 does not have proper authorisation check when deleting reviews, which could allow any authenticated users, such as subscriber to delete arbitrary comment
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2(expand)+ 1 more
- (no CPE)
- (no CPE)range: <6.2.1
Patches
Vulnerability mechanics
References
3- plugins.trac.wordpress.org/changeset/2683324nvdPatch
- wpscan.com/vulnerability/b76dbf37-a0a2-48cf-bd85-3ebbc2f394dd/nvdExploitThird Party Advisory
- developer.woocommerce.com/2022/02/22/woocommerce-6-2-1-security-fix/nvdRelease Notes
News mentions
0No linked articles in our index yet.