Monitor vulnerabilities like this one.
Sign up free to get alerted when software you use is affected.
5.3
Ultimate Gift Cards For WooCommerce: Unauthorized Access to Gift Cards
CVE-2026-24375
Summary
A security flaw in Ultimate Gift Cards For WooCommerce allows unauthorized users to access gift cards if access control settings are misconfigured. This can lead to users being able to redeem or modify gift cards without proper authorization. Users should update to version 3.2.5 or later to fix the issue.
Original title
Missing Authorization vulnerability in WP Swings Ultimate Gift Cards For WooCommerce woo-gift-cards-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects U...
Original description
Missing Authorization vulnerability in WP Swings Ultimate Gift Cards For WooCommerce woo-gift-cards-lite allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Ultimate Gift Cards For WooCommerce: from n/a through <= 3.2.4.
nvd CVSS3.1
5.3
Vulnerability type
CWE-862
Missing Authorization
Published: 19 Feb 2026 · Updated: 11 Mar 2026 · First seen: 6 Mar 2026