Severe Vulnerability Patched In WooCommerce Currency Switcher

Marc Montpas posted: " During an internal audit of the woocommerce-currency-switcher plugin, we uncovered a very severe local file inclusion vulnerability.  This security flaw could enable attackers to leak sensitive information like database credentials, cryptographic" New post on Jetpack: WordPress Security, Performance, and Growth Severe Vulnerability Patched In WooCommerce Currency Switcher by Marc Montpas During an internal audit of the woocommerce-currency-switcher plugin, we uncovered a very severe local file inclusion vulnerability.  This security flaw could enable attackers to leak sensitive information like database credentials, cryptographic keys, and may allow arbitrary code execution in some instances. We reported the vulnerabilities to the WOOCS team via email last week, and they released version 1.3.7 to fix this issue. If you are using an older version of this plugin, we encourage you to update immediately. Continue reading "Severe Vulnerability Patched In WooCommerce Currency Switcher" Marc Montpas | July 22, 2021 at 3:55 pm | Categories: Vulnerabilities | URL: https://wp.me/p1moTy-xBV Unsubscribe to no longer receive posts from Jetpack: WordPress Security, Performance, and Growth. Change your email settings at Manage Subscriptions. Trouble clicking? Copy and paste this URL into your browser: http://jetpack.com/2021/07/22/severe-vulnerability-patched-in-woocommerce-currency-switcher/ Thanks for flying with WordPress.com