Update the WordPress WooCommerce plugin to the latest available version (at least 6.2.1).
An unknown person discovered and reported this Directory Traversal vulnerability in WordPress WooCommerce Plugin. This could allow a malicious actor to see all files in a given directory or determine if certain files/directories exist in given folder. This can be used to exploit other weaknesses in the system This vulnerability has been fixed in version 6.2.1.
Authenticated Stored HTML Injection vulnerability
20.06.2022
Orders Status Change (via PayPal Standard Gateway) vulnerability
10.03.2022
Arbitrary Comment Deletion vulnerability
23.02.2022
Analytics Report Leaks vulnerability
22.09.2021
Unauthenticated SQL Injection (SQLi) vulnerability
15.07.2021