Security vulnerability alert

  • Resolved cfm168

    (@cfm168)


    1 year, 3 months ago

    Hello, I received following security risk warning:

    —————————————————————————

    Input validation vulnerability in Dynamic Pricing and Discount Rules for WooCommerce 2.4.0
    CVE-2023-40559
    Severity: medium-risk
    Status: Open
    Publication: August 16, 2023
    The WooCommerce Dynamic Pricing and Discount Rules plugin for WordPress has a security vulnerability in versions up to and including 2.4.0. This vulnerability is due to a lack of nonce validation on several functions, which means that malicious attackers can control the plugin’s settings by sending a false request, as long as they can trick a site

    ————————————————————————–

    I am running Woocomerce v8.0.2, WP6.3.

    Can you possible to fix it? Thanks in advance!

Viewing 6 replies - 1 through 6 (of 6 total)
Viewing 6 replies - 1 through 6 (of 6 total)
  • The topic ‘Security vulnerability alert’ is closed to new replies.