Loading


Critical Vulnerability of Popular WooCommerce WordPress Plugin

Critical Vulnerability of Popular WooCommerce WordPress Plugin
2018-11-10 204

Critical Vulnerability of Popular WooCommerce WordPress Plugin


Latest security vulnerability has been found in WooCommerce which is the one of the Wordpres's famous e-commerce plugin. With this vulnerability, DELETE FILES and CSRF (Unauthorized user self-authorization) weaknesses were found.

After reporting, WooComerce developers released the new update by removing this security vulnerability in WooCommerce 3.4.6. The weakness was first found by the company Ripstech.

Detailed information about the work area and exploitation of the weakness are given below.


  

 

Examples of Incorrect Codes are listed below