Description

WordPress Plugin TeraWallet-For WooCommerce is prone to a insecure direct object reference (IDOR) vulnerability. Exploiting this issue may allow an attacker to lock/unlock other users wallets. WordPress Plugin TeraWallet-For WooCommerce version 1.4.3 is vulnerable; prior versions may also be affected.

Remediation

Update to plugin version 1.4.4 or latest

References

Related Vulnerabilities