WooCommerce vulnerability

Viewing 4 replies - 1 through 4 (of 4 total)
  • Plugin Author gioni

    (@gioni)

    Hi! It’s hard to say since no detailed information about the vulnerability has been disclosed yet.

    Plugin Author gioni

    (@gioni)

    Fixes for all branches have already been released. Here is how to update WooCommerce to the highest number in your release branch: https://woocommerce.com/posts/critical-vulnerability-detected-july-2021/

    Thread Starter fotinos

    (@fotinos)

    I know and have updated.

    My concern is how I can know whether the vulnerability has or not been exploited on my site. Any clue?

    I have contacted my managed hosting and they say they scanned my site and it’s clean, as are the log files from the last days.

    But is that enough? Do exploited vulnerabilities like this one leave traces?

    I’m also waiting for further info from WooCommerce.

    Again, thank you for your time! Best!

    Plugin Author gioni

    (@gioni)

    It takes days and weeks for hackers to prepare tools and to be fully ready to exploit such vulnerabilities in real life. Therefore, I believe zero websites were compromised to date.

    Traces? It mostly depends on the skills of a hacker. Only a good logging/alerting tool can help here. Like WP Cerber ??

Viewing 4 replies - 1 through 4 (of 4 total)
  • The topic ‘WooCommerce vulnerability’ is closed to new replies.