all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Critical WooCommerce Payments Plugin Flaw Patched for 500,000+ WordPress Sites

Add to bookmarks
March 24, 2023, 7:51 a.m. | info@thehackernews.com (The Hacker News)

The Hacker News thehackernews.com

Patches have been released for a critical security flaw impacting the WooCommerce Payments plugin for WordPress, which is installed on over 500,000 websites.
The flaw, if left unresolved, could enable a bad actor to gain unauthorized admin access to impacted stores, the company said in an advisory on March 23, 2023. It impacts versions 4.8.0 through 5.6.1.
Put differently, the issue could permit

access actor advisory bad critical enable flaw issue march patches payments plugin security the company websites woocommerce woocommerce payments plugin wordpress

Visit resource

More from thehackernews.com / The Hacker News

Malicious Python Package Hides Sliver C2 Framework in Fake Requests Library Logo 4 hours ago | thehackernews.com
c2 framework command control cybersecurity +18
FIN7 Hacker Group Leverages Malicious Google Ads to Deliver NetSupport RAT 2 days, 2 hours ago | thehackernews.com
actor ads anydesk asana +20
North Korean Hackers Deploy New Golang Malware 'Durian' Against Crypto Firms 2 days, 19 hours ago | thehackernews.com
actor attacks backdoor commands +20
CensysGPT: AI-Powered Threat Hunting for Cybersecurity Pros (Webinar) 2 days, 21 hours ago | thehackernews.com
advanced ai-powered ai tools artificial +19
Chrome Zero-Day Alert — Update Your Browser to Patch New Vulnerability 3 days ago | thehackernews.com
actively exploited address alert anonymous +25
What's the Right EDR for You? 3 days ago | thehackernews.com
and response antivirus business businesses +18
Malicious Android Apps Pose as Google, Instagram, WhatsApp, Spread via Smishing 3 days ago | thehackernews.com
android android app android apps app +20
Researchers Uncover 'LLMjacking' Scheme Targeting Cloud-Hosted AI Models 3 days, 2 hours ago | thehackernews.com
access ai models attack cloud +24
New TunnelVision Attack Allows Hijacking of VPN Traffic via DHCP Manipulation 3 days, 16 hours ago | thehackernews.com
attack bypass cve cve-2024 +25

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

Security Architect

@ Alter Solutions | Lisboa, Portugal
View on infosec-jobs.com

Information Security Program Manager

@ Fisher Investments | Tampa, FL, United States
View on infosec-jobs.com

Digital Security Infrastructure Manager

@ Wizz Air | Budapest, HU, H-1103
View on infosec-jobs.com

Sr. Solution Consultant

@ Highspot | Sydney
View on infosec-jobs.com

Cyber Security Analyst III

@ Love's Travel Stops | Oklahoma City, OK, US, 73120
View on infosec-jobs.com

Lead Security Engineer

@ JPMorgan Chase & Co. | Tampa, FL, United States
View on infosec-jobs.com
View more jobs