Really Simple Security logo

Log out
Get PRO

Latest

Input validation vulnerability in WooCommerce – Store Exporter 2.3.1

  • Severity: medium-risk
  • Status: Open
  • Publication: January 9, 2020

The WooCommerce – Store Exporter plugin is a tool for WordPress websites that allows for the exporting of store information. Unfortunately, versions up to, and including 2.3.1 have a vulnerability that allows malicious actors to embed harmful code into exported files. These files, when downloaded and opened on an unprotected system, can result in the code being executed and potentially causing damage. It is important to update the plugin to the latest version to ensure protection.

Detected in:

Store Exporter – Export WooCommerce Products, Orders, Subscriptions, Customers fixed vulnerable versions:
Store Exporter for WooCommerce – Export Products, Export Orders, Export Subscriptions, and More fixed vulnerable versions:
WooCommerce – Store Exporter open vulnerable versions: >= * <= 2.3.1

This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!

Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:

> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21

  • Incorrect?

Is this information incorrect? Please leave us a message.