WooCommerce Order Details Access Control Failure

Monitor vulnerabilities like this one. Sign up free to get alerted when software you use is affected.

7.5

WooCommerce Order Details Access Control Failure

CVE-2026-27374

Summary

An error in WooCommerce Order Details allows unauthorized access to sensitive order information. This affects WooCommerce Order Details versions up to 3.1, and you should update to the latest version to fix the issue.

Original title

Missing Authorization vulnerability in vanquish WooCommerce Order Details woocommerce-order-details allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects WooCom...

Original description

nvd CVSS3.1 7.5

Vulnerability type

CWE-862 Missing Authorization

https://patchstack.com/database/Wordpress/Plugin/woocommerce-order-details/vulne...

Published: 5 Mar 2026 · Updated: 13 Mar 2026 · First seen: 6 Mar 2026