Back
WordPress WooCommerce plugin <= 4.6.1 - Guest Account Creation vulnerability
- Product
- WooCommerce
- Description
- Guest Account Creation vulnerability found in WordPress WooCommerce plugin (versions <= 4.6.1).
- Solution
- Update the WordPress WooCommerce plugin to the latest available version (at least 4.6.2).
- Classification
-
Type Unknown
OWASP Top 10 A7: Missing Function Level Access Control
- References
-
Vulnerability fix details
Plugin changelog
- CVE
- Name CVE-N/A
- Versions
-
Affected In
<= 4.6.1
Fixed In 4.6.2
- Disclosure date
- 2020-11-06