Sucuri has released a WordPress Plugin Security Alert for the WooCommerce Wordpress Plugin...
Quote:
Security Advisory: Object Injection Vulnerability in WooCommerce
Security Risk: Dangerous
Exploitation Level: Easy/Remote
DREAD Score: 8/10
Vulnerability: Object Injection
Patched Version: 2.3.11
|
https://blog.sucuri.net/2015/06/secu...ocommerce.html
http://www.wordfence.com/blog/2015/0...vulnerability/
If you are using the WP WooCommerce Plugin you will want to immediately upgrade the plugin or disable if unable to upgrade immediatelty.
http://www.woothemes.com/woocommerce/
As always FutureQuest encourages anyone running any scripts, such as
WordPress, to ensure they maintain the most up to date version and install
any patches released to reduce the chances of a compromise of your site.
This also includes any plugins, addons and themes...
It is always best to subscribe to any Security or Update mailing list provided
by the Authors of the script(s) you are running.
The FutureQuest Team
Linear Mode
