ShipTime Discounted Shipping Rates: Unsecured Discounts

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

5.3

ShipTime Discounted Shipping Rates: Unsecured Discounts

CVE-2026-39672

Summary

A security flaw in ShipTime's discounted shipping rates feature allows unauthorized users to access and claim discounts they shouldn't have. This could lead to incorrect or unauthorized discounts being applied. ShipTime users should update to a secure version of the discounted shipping rates feature to prevent this issue.

Original title

Missing Authorization vulnerability in shiptime ShipTime: Discounted Shipping Rates shiptime-discount-shipping allows Exploiting Incorrectly Configured Access Control Security Levels.This issue aff...

Original description

Vulnerability type

CWE-862 Missing Authorization

https://patchstack.com/database/Wordpress/Plugin/shiptime-discount-shipping/vuln...

Published: 8 Apr 2026 · Updated: 10 Apr 2026 · First seen: 8 Apr 2026