A plugin called “License Manager for WooCommerce” on WordPress has a security issue that allows unauthorized access to data. This is because it does not check for the proper permissions when using the showLicenseKey() and showAllLicenseKeys() functions, in versions up to 3.0.7. This means that someone who is logged in as an admin (or contributor) can see decrypted license keys without permission. The plugin does have a security measure in place, but it can be bypassed through a “license” variable in the dashboard.