Viewing 1 post (of 1 total)
  • Author
    Posts
  • #41150
    Profile photo of Greg
    Greg
    Participant

    Woocommerce security issues:

    https://woocommerce.com/posts/critical-vulnerability-detected-july-2021/?quid=3879fb00173f9fa5657b09c1fa7059d1

    On July 13, 2021, a critical vulnerability concerning WooCommerce and the WooCommerce Blocks feature plugin was identified and responsibly disclosed by security researcher Josh, via our HackerOne security program.

    Upon learning about the issue, our team immediately conducted a thorough investigation, audited all related codebases, and created a patch to fix the issue for every impacted version (90+ releases) which was deployed automatically to vulnerable stores.

    It mentions that the vulnerability requires you to reset/change admin passwords due to the security risks

    So at least WooCommerce v 5.5.2 should be used as a minimum

Viewing 1 post (of 1 total)

You must be logged in to reply to this topic.