Description
Authorization Bypass Through User-Controlled Key vulnerability in WP Wham Checkout Files Upload for WooCommerce checkout-files-upload-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Checkout Files Upload for WooCommerce: from n/a through <= 2.2.5.
Published: 2026-05-27
Score: 6.5 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is an IDOR flaw in the WP Wham Checkout Files Upload for WooCommerce plugin that permits an authenticated user to bypass access controls and upload or modify files on the server. Because the file upload endpoint does not validate that the requester is authorized to act on the target location, an attacker can supply arbitrary file paths or names and retrieve or replace confidential files. The flaw is classified as CWE‑639, indicating an exploitation of inadequate authorization checks.

Affected Systems

WP Wham – Checkout Files Upload for WooCommerce plugin. Versions affected are all releases through and including 2.2.5; no newer versions have been listed as vulnerable in the current advisory.

Risk and Exploitability

The CVSS score of 6.5 denotes a moderate level of severity for this vulnerability, while the EPSS score is not available at this time and it is not listed in CISA’s KEV catalog. The likely attack vector is via HTTP requests to the file‑upload endpoint, enabling any user with access to the WordPress site to abuse the endpoint to upload or alter files. Although no public zero‑day exploit has been documented, the absence of stringent access checks makes the flaw readily exploitable with minimal technical effort.

Generated by OpenCVE AI on May 27, 2026 at 11:27 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Update WP Wham Checkout Files Upload for WooCommerce to the latest version (2.2.6 or newer).
  • If an immediate update is not possible, restrict the upload feature to privileged users only or temporarily disable the upload functionality altogether.
  • Continuously monitor the site for suspicious file‑upload attempts and review access logs for evidence of unauthorized activity.

Generated by OpenCVE AI on May 27, 2026 at 11:27 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Wed, 27 May 2026 11:45:00 +0000

Type Values Removed Values Added
First Time appeared Wordpress
Wordpress wordpress
Wpwham
Wpwham checkout Files Upload For Woocommerce
Vendors & Products Wordpress
Wordpress wordpress
Wpwham
Wpwham checkout Files Upload For Woocommerce

Wed, 27 May 2026 11:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 27 May 2026 10:30:00 +0000

Type Values Removed Values Added
Description Authorization Bypass Through User-Controlled Key vulnerability in WP Wham Checkout Files Upload for WooCommerce checkout-files-upload-woocommerce allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects Checkout Files Upload for WooCommerce: from n/a through <= 2.2.5.
Title WordPress Checkout Files Upload for WooCommerce plugin <= 2.2.5 - Insecure Direct Object References (IDOR) vulnerability
Weaknesses CWE-639
References
Metrics cvssV3_1

{'score': 6.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:L'}

Subscriptions

Wordpress Wordpress
Wpwham Checkout Files Upload For Woocommerce
cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published:

Updated: 2026-05-27T10:53:50.197Z

Reserved: 2026-04-29T09:05:20.867Z

Link: CVE-2026-42725

cve-icon Vulnrichment

Updated: 2026-05-27T10:53:45.608Z

cve-icon NVD

Status : Received

Published: 2026-05-27T11:16:18.827

Modified: 2026-05-27T11:16:18.827

Link: CVE-2026-42725

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-05-27T11:30:25Z

Weaknesses