Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.3
WooCommerce Live Sales Notifications: Unauthorized Access to Sales Data
CVE-2026-27066
Summary
A bug in WooCommerce Live Sales Notifications software allows unauthorized users to access sales data if the security settings are not properly configured. This affects versions 1 through 2.3.46 of the plugin. To fix the issue, update the plugin to a patched version or configure the security settings correctly.
Original title
Missing Authorization vulnerability in PI Web Solution Live sales notification for WooCommerce live-sales-notifications-for-woocommerce allows Exploiting Incorrectly Configured Access Control Secur...
Original description
Missing Authorization vulnerability in PI Web Solution Live sales notification for WooCommerce live-sales-notifications-for-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Live sales notification for WooCommerce: from n/a through <= 2.3.46.
nvd CVSS3.1
5.3
Vulnerability type
CWE-862
Missing Authorization
Published: 19 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026