CVE-2026-32398 - Vulnerability Details - OpenCVE

Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Subrata Mal TeraWallet – For WooCommerce woo-wallet allows Leveraging Race Conditions.This issue affects TeraWallet – For WooCommerce: from n/a through <= 1.5.15.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.00018.

Key SSVC decision points have not yet been added.

No data.

No data.

No data.

No data.

References

Link	Providers
https://patchstack.com/database/Wordpress/Plugin/woo-wallet/vulnerability/wordpress-terawallet-for-woocommerce-plugin-1-5-15-race-condition-vulnerability?_s_id=cve

History

Fri, 13 Mar 2026 12:00:00 +0000

Type	Values Removed	Values Added
Description		Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Subrata Mal TeraWallet – For WooCommerce woo-wallet allows Leveraging Race Conditions.This issue affects TeraWallet – For WooCommerce: from n/a through <= 1.5.15.
Title		WordPress TeraWallet – For WooCommerce plugin <= 1.5.15 - Race Condition vulnerability
Weaknesses		CWE-362
References		https://patchstack.com/database/Wordpress/Plugin/woo-wallet/vulnerability/wordpress-terawallet-for-woocommerce-plugin-1-5-15-race-condition-vulnerability?_s_id=cve

MITRE

Status: PUBLISHED

Assigner: Patchstack

Published: 2026-03-13T11:42:11.880Z

Updated: 2026-03-13T11:42:11.880Z

Reserved: 2026-03-12T11:11:14.584Z

Link: CVE-2026-32398

Vulnrichment

No data.

NVD

No data.

Redhat

No data.

OpenCVE Enrichment

No data.

{"dataType": "CVE_RECORD", "dataVersion": "5.2", "cveMetadata": {"cveId": "CVE-2026-32398", "assignerOrgId": "21595511-bba5-4825-b968-b78d1f9984a3", "state": "PUBLISHED", "assignerShortName": "Patchstack", "dateReserved": "2026-03-12T11:11:14.584Z", "datePublished": "2026-03-13T11:42:11.880Z", "dateUpdated": "2026-03-13T11:42:11.880Z"}, "containers": {"cna": {"affected": [{"collectionURL": "https://wordpress.org/plugins", "defaultStatus": "unaffected", "packageName": "woo-wallet", "product": "TeraWallet \u2013 For WooCommerce", "vendor": "Subrata Mal", "versions": [{"changes": [{"at": "1.5.16", "status": "unaffected"}], "lessThanOrEqual": "<= 1.5.15", "status": "affected", "version": "n/a", "versionType": "custom"}]}], "credits": [{"lang": "en", "type": "finder", "value": "b4shu206 | Patchstack Bug Bounty Program"}], "datePublic": "2026-03-13T12:41:14.444Z", "descriptions": [{"lang": "en", "supportingMedia": [{"base64": false, "type": "text/html", "value": "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Subrata Mal TeraWallet \u2013 For WooCommerce woo-wallet allows Leveraging Race Conditions.<p>This issue affects TeraWallet \u2013 For WooCommerce: from n/a through <= 1.5.15.</p>"}], "value": "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition') vulnerability in Subrata Mal TeraWallet \u2013 For WooCommerce woo-wallet allows Leveraging Race Conditions.This issue affects TeraWallet \u2013 For WooCommerce: from n/a through <= 1.5.15."}], "impacts": [{"capecId": "CAPEC-26", "descriptions": [{"lang": "en", "value": "Leveraging Race Conditions"}]}], "problemTypes": [{"descriptions": [{"cweId": "CWE-362", "description": "Concurrent Execution using Shared Resource with Improper Synchronization ('Race Condition')", "lang": "en", "type": "CWE"}]}], "providerMetadata": {"orgId": "21595511-bba5-4825-b968-b78d1f9984a3", "shortName": "Patchstack", "dateUpdated": "2026-03-13T11:42:11.880Z"}, "references": [{"tags": ["vdb-entry"], "url": "https://patchstack.com/database/Wordpress/Plugin/woo-wallet/vulnerability/wordpress-terawallet-for-woocommerce-plugin-1-5-15-race-condition-vulnerability?_s_id=cve"}], "title": "WordPress TeraWallet \u2013 For WooCommerce plugin <= 1.5.15 - Race Condition vulnerability"}}}