Advertisement
Top
image credit: Unsplash

Critical WooCommerce Payments Plugin Flaw Patched for 500,000+ WordPress Sites

March 24, 2023

Via: The Hacker News
Category:

Patches have been released for a critical security flaw impacting the WooCommerce Payments plugin for WordPress, which is installed on over 500,000 websites.

The flaw, if left unresolved, could enable a bad actor to gain unauthorized admin access to impacted stores, the company said in an advisory on March 23, 2023. It impacts versions 4.8.0 through 5.6.1.

Put differently, the issue could permit an “unauthenticated attacker to impersonate an administrator and completely take over a website without any user interaction or social engineering required,” WordPress security company Wordfence said.

Read More on The Hacker News

RELATED PUBLICATIONS

Google Cloud says it has fixed a significant security flaw
More than 17,000 WordPress websites infected with the Balada Injector in September
Fresh curl tomorrow will patch ‘worst’ security flaw in ages

Latest Publications

Sweden’s liquor supply severely impacted by ransomware attack on logistics company
Autodesk Drive Abused in Phishing Attacks 
Google fixed critical Chrome vulnerability CVE-2024-4058
Security Curated Copyright © 2024. All rights reserved
Go to ITCurated!