Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in Store Exporter for WooCommerce – Export Products, Export Orders, Export Subscriptions, and More 2.7.2

  • Severity: medium-risk
  • Status: Fixed
  • Publication: October 29, 2023

The Store Exporter for WooCommerce plugin is vulnerable to a security issue that could allow unauthenticated attackers to inject malicious code onto pages that can be seen by other users. The vulnerability affects all versions of the plugin up to and including 2.7.2 and is due to insufficient input sanitization and output escaping. This means that if an attacker can trick a user into clicking a link, they could inject malicious scripts into the page the user saw.

Detected in:

Store Exporter – Export WooCommerce Products, Orders, Subscriptions, Customers fixed vulnerable versions:
Store Exporter for WooCommerce – Export Products, Export Orders, Export Subscriptions, and More fixed vulnerable versions:

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.