CVE-2026-3504 - Dokan: AI Powered WooCommerce Multivendor Marketplace Solution <= 4.3.1 - Unauthenticated Information Disclosure in Store Reviews REST API Endpoint
CVE ID :CVE-2026-3504 Published : May 2, 2026, 1:26 p.m. | 41 minutes ago Description :The Dokan: AI Powered WooCommerce Multivendor Marketplace Solution plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 4.3.1 via the '/dokan/v1/stores/{
ORIGINAL SOURCE →via CVE Feed Latest
ADVERTISEMENT
⚡ STAY AHEAD
Events like this, convergence-verified across 689 sources, land in your inbox every Sunday. Free.
GET THE SUNDAY BRIEFING →RELATED · cyber
- [CYBER] Canonical under DDoS: what my Railway logs and uptime say about my real exposure
- [CYBER] Canonical bajo DDoS: lo que mis logs de Railway y uptime dicen sobre mi exposición real
- [CYBER] An ansible playbook to mitigate the copy-fail vulnerability
- [CYBER] How do you triage patches without a full vuln management stack?
- [CYBER] Analysing Microsoft audit logs
- [CYBER] Two US cybersecurity experts sentenced in ransomware case, third awaits July ruling