Report
The Docket (WooCommerce Collections / Wishlist / Watchlist) plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in all versions up to 1.7.0 (exclusive). This makes it possible for unauthenticated attackers to delete arbitrary pages and posts.
Score:7.5
Severity:High
Version:< 1.7.0
There is a patch available in v1.7.0 and we strongly recommend you update to this version as soon as possible.
