ThreatPress

WordPress Vulnerabilities Database

Back

WordPress WooCommerce plugin <=3.2.3 - Authenticated PHP Object Injection vulnerability

Product
WooCommerce
Description
Authenticated PHP Object Injection vulnerability found in WordPress WooCommerce plugin (versions <=3.2.3).
Solution
Update the WordPress WooCommerce plugin to the latest available version (at least 3.2.4).
Classification
Type PHP Object Injection
References
Plugin changelog
CVE
Name CVE-N/A
Versions
Affected In <=3.2.3
Fixed In 3.2.4
Disclosure date
2018-02-23
Submitter
ThreatPress