Log out
Get PRO

Latest

Access violation vulnerability in WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels 4.4.2

  • Severity: medium-risk
  • Status: Fixed
  • Publication: April 5, 2024

The WooCommerce plugin for WordPress, which helps with creating PDF invoices, packing slips, delivery notes, and shipping labels, has a security issue. This means that anyone can change the plugin’s settings without permission. This vulnerability affects all versions up to 4.4.2, allowing attackers to reset all of the plugin’s settings without being logged in.

Detected in:

WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes & Shipping Labels fixed vulnerable versions:
WebToffee WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels fixed vulnerable versions:
WooCommerce PDF Invoices, Packing Slips, Delivery Notes and Shipping Labels fixed vulnerable versions: >= * <= 4.4.2

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.