CVE-2022-45070 – WordPress Conditional Checkout Fields for WooCommerce plugin <= 1.2.3 - Broken Authentication vulnerability

https://notcve.org/view.php?id=CVE-2022-45070

Missing Authorization vulnerability in FmeAddons Conditional Checkout Fields for WooCommerce.This issue affects Conditional Checkout Fields for WooCommerce: from n/a through 1.2.3. Vulnerabilidad de autorización faltante en FmeAddons Conditional Checkout Fields para WooCommerce. Este problema afecta FmeAddons Conditional Checkout Fields para WooCommerce: desde n/a hasta 1.2.3. The Conditional Checkout Fields & Edit Checkout Fields for WooCommerce plugin for WordPress is vulnerable to unauthorized modification of data due to missing capability check in versions up to, and including, 1.2.1. This makes it possible for unauthenticated attackers to perform unauthorized actions. • https://patchstack.com/database/vulnerability/conditional-checkout-fields-for-woocommerce/wordpress-conditional-checkout-fields-for-woocommerce-plugin-1-2-1-broken-authentication-vulnerability?_s_id=cve • CWE-862: Missing Authorization •