WooCommerce Patches Critical Plugin Flaw Affecting Half a Million … – Infosecurity Magazine
Vulnerable code has been discovered in the payment solution plugin WooCommerce for the WordPress content management system (CMS) that could allow an unauthenticated attacker to gain administrative privileges and take over a website.
The findings come from WordPress security experts at Wordfence, who described the critical authentication bypass in a blog post published on Thursday.
The Wordfence blog post, written by senior threat researcher Ram Gall, explains how the team found the vulnerability after analyzing version 5.6.2 of the WooCommerce plugin on the same day it was released.
“After reviewing the update, we determined that it removed vulnerable code that could allow an unauthenticated attacker to impersonate an administrator and completely take over a website without any user interaction or social engineering required,” Gall wrote.
The researcher also clarified that the…
Read Full Story: https://news.google.com/rss/articles/CBMiSGh0dHBzOi8vd3d3LmluZm9zZWN1cml0eS1tYWdhemluZS5jb20vbmV3cy93b29jb21tZXJjZS1mbGF3LWFmZmVjdC1oYWxmL9IBAA?oc=5
The post WooCommerce Patches Critical Plugin Flaw Affecting Half a Million … – Infosecurity Magazine first appeared on SEO, Marketing and Social News | OneSEOCompany.com.
source: https://news.oneseocompany.com/2023/03/24/woocommerce-patches-critical-plugin-flaw-affecting-half-a-million-infosecurity-magazine_2023032442545.html
Your content is great. However, if any of the content contained herein violates any rights of yours, including those of copyright, please contact us immediately by e-mail at media[@]kissrpr.com.