CVE Catalog

CVE-2026-54848

HighCVSS 8.3
Published: Updated: Translated: NVD NIST

Summary

The vulnerability in APIExperts Square for WooCommerce allows the insertion of sensitive information into sent data, enabling retrieval of that data later.

Risk Assessment

Organizations may be exposed to sensitive data leaks, potentially leading to privacy breaches and loss of customer trust.

Recommendation

It is recommended to update to the latest version of APIExperts Square for WooCommerce and review application security.

Original NVD description (English source)

Insertion of Sensitive Information Into Sent Data vulnerability in Saad Iqbal APIExperts Square for WooCommerce allows Retrieve Embedded Sensitive Data. This issue affects APIExperts Square for WooCommerce: from n/a through 4.7.3.

Vulnerability data from NVD (NIST) · CISA KEV · EPSS