Hi
It was flagged by Wordfence as a “Critical issue” and it’s on the “Vulnerability Database” with Vulnerability Severity: 5.3/10.0 (Medium)
“The CTX Feed plugin for WordPress is vulnerable to unauthorized access due to a missing capability check on a function in versions up to, and including, 6.6.18. This makes it possible for unauthenticated attackers to perform an unauthorized action.”
Here is the link:
https://www.wordfence.com/threat-intel/vulnerabilities/wordpress-plugins/webappick-product-feed-for-woocommerce/ctx-feed-6618-missing-authorization
