A vulnerability was found in dhlparcel DHL eCommerce for WooCommerce Plugin up to 2.2.3. It has been classified as critical. This vulnerability affects the function create_label/delete_label of the component Shipping Label Management. Performing a manipulation of the argument post_id results in improper authorization.

This vulnerability was named CVE-2026-9235. The attack may be initiated remotely. There is no available exploit.