Impact
The Dokan plugin for WordPress contains a flaw where an authenticated user can supply a product ID and retrieve information about any vendor’s products, including drafts and pending listings. The plugin checks only generic vendor capabilities and does not verify that the requested product belongs to the calling user, creating an Insecure Direct Object Reference that discloses product names, prices, SKUs and descriptions. This is identified as CWE‑639.
Affected Systems
The vulnerability affects all releases of the Dokan: AI Powered WooCommerce Multivendor Marketplace Solution plugin up to and including version 5.0.4. Users with subscriber-level access or higher, who hold the 'dokan_view_product_menu' or 'dokandar' capabilities, can exploit the flaw within the WordPress ecosystem.
Risk and Exploitability
The CVSS score of 4.3 indicates a medium severity to confidentiality. Because the exploit requires authenticated access and the attacker must know a valid product ID, the overall exploitability is moderate. There is no EPSS data available, in the CISA KEV catalog. The path is limited to legitimate vendors, but leaking product data can damage competitive advantage and pricing strategies.
OpenCVE Enrichment