关键信息 漏洞名称: WordPress Sharepine Woocommerce Connector Plugin <= 4.7.55 is vulnerable to Broken Access Control 优先级: Low priority 受影响版本: <= 4.7.55 风险: CVSS 6.3, Broken Access Control 状态: No official fix available, likely abandoned (last updated over a year ago) 解决方案: Remove and replace software 报告日期: 19 Apr 2025 发布日期: 16 May 2025 风险描述 Broken Access Control: A broken access control issue refers to a missing authorization, authentication or nonce token check in a function that could lead to an unprivileged user executing a certain higher privileged action. 解决方案 This security issue has a low severity impact and is unlikely to be exploited. Remove and replace software: This software was last updated over a year ago and will likely not receive further updates or fixes. Note that deactivating the software does not remove the security threat unless a vPatch is deployed.