CVE-2025-24603

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Published Jan 27, 2025

CWE ID 862

Summary

CVE-2025-24603 is a critical authorization vulnerability affecting the UkrSolution Print Barcode Labels plugin for WooCommerce. The issue allows unauthorized users to access and modify product and order information without proper authentication. This vulnerability impacts all versions of the plugin up to and including 3.4.10. An attacker could exploit this weakness by manipulating barcode labels, potentially leading to financial loss or data breaches. It is strongly recommended that affected users upgrade to the latest version of the plugin to mitigate the risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/2umtAw
https://www.cve.org/CVERecord?id=CVE-2025-24603
https://nvd.nist.gov/vuln/detail/CVE-2025-24603

Back to Vulnerability Database

CVE-2025-24603

CVSS 3.1 Score 4.3 of 10 (medium)

Details

Summary

Advisories, Assessments, and Mitigations