Get a demo
100% Signal 0% Noise Invicti Logo - The Largest Dynamic Application Security Solutions Provider In The World Get a demo
WordPress Plugin WooCommerce Payments-Fully Integrated Solution Built and Supported by Woo Security Bypass - CVE-2023-28121 - Vulnerability Database
WP Plugin Woocommerce Payments

WordPress Plugin WooCommerce Payments-Fully Integrated Solution Built and Supported by Woo Security Bypass - CVE-2023-28121

Critical
Reference: CVE-2023-28121
NVD Link: https://nvd.nist.gov/vuln/detail/CVE-2023-28121
Title: WordPress Plugin WooCommerce Payments-Fully Integrated Solution Built and Supported by Woo Security Bypass
Overview:

WordPress Plugin WooCommerce Payments-Fully Integrated Solution Built and Supported by Woo is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently impersonate arbitrary users and perform some actions as the impersonated user which can lead to site takeover. WordPress Plugin WooCommerce Payments-Fully Integrated Solution Built and Supported by Woo versions 4.8.0 - 5.6.1 are vulnerable.