The Custom WooCommerce Checkout Fields Editor plugin for WordPress has a security issue in versions up to and including 1.3.0. This is because it does not properly check for a security code, making it possible for someone without permission to make changes by tricking the site’s administrator into clicking on a link.