The WPC Smart Messages for WooCommerce plugin for WordPress has a security vulnerability in all versions up to 4.2.1. This vulnerability allows attackers with Subscriber-level access or higher to include and run any file on the server, including PHP code. This could be used to bypass security measures, access private information, or execute code.
This information is sourced from www.wpvulnerability.com. An open-source database of vulnerabilities maintained by the community. Help us out by submitting vulnerabilities!
Version compare shows which versions have a vulnerability. For example: >= 2.2.8 <= 2.2.21 means:
> from 2.2.8
= including 2.2.8 & 2.2.21
< to 2.2.21
Is this information incorrect? Please leave us a message.
