Vulnerabilities > Zorem > Advanced Shipment Tracking FOR Woocommerce > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-06-07 CVE-2021-4347 Missing Authorization vulnerability in Zorem Advanced Shipment Tracking for Woocommerce
The function update_shipment_status_email_status_fun in the plugin Advanced Shipment Tracking for WooCommerce in versions up to 3.2.6 is vulnerable to authenticated arbitrary options update.
network
low complexity
zorem CWE-862
6.5
6.5