Description
WordPress Plugin Premmerce Wholesale Pricing for WooCommerce is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently perform a variety of the plugin's actions or even take over a website. WordPress Plugin Premmerce Wholesale Pricing for WooCommerce version 1.1.3 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 1.1.4 or latest
References
Related Vulnerabilities
PHP Inadequate Encryption Strength Vulnerability (CVE-2020-7069)
WordPress Plugin User Login History Multiple Cross-Site Scripting Vulnerabilities (1.5.2)
Jenkins Permissions, Privileges, and Access Controls Vulnerability (CVE-2016-3725)
Nginx Improper Encoding or Escaping of Output Vulnerability (CVE-2013-4547)
qdPM Improper Control of Generation of Code ('Code Injection') Vulnerability (CVE-2020-26165)