CVE-2023-37969

MEDIUM

The African Boss Checkout with Zelle on Woocommerce <3.1 - Auth Bypass

Title source: llm
STIX 2.1

Description

Missing Authorization vulnerability in The African Boss Checkout with Zelle on Woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Checkout with Zelle on Woocommerce: from n/a through 3.1.

Scores

CVSS v3 5.3
EPSS 0.0043
EPSS Percentile 34.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N

CISA SSVC

Vulnrichment
Exploitation none
Automatable yes
Technical Impact partial

Details

CWE
CWE-862
Status published
Products (1)
The African Boss/Checkout with Zelle on Woocommerce < 3.1
Published Dec 13, 2024
Tracked Since Feb 18, 2026