Support » Plugin: YITH WooCommerce Ajax Product Filter » SQL Injection vulnerability?

  • Resolved bella2011


    Sucuri recently sent out a notification (1/16/2018) to all customers that it discovered an SQL Injection vulnerability affecting the YITH WooCommerce Wishlist plugin for WordPress.

    Is there a known issue with the YITH WooCommerce Ajax Product Filter as well? Please advise.

Viewing 1 replies (of 1 total)
  • Plugin Author YITHEMES



    no, don’t worry there aren’t any know issue related to SQL injection to Ajax Product Filter plugin.
    The YITH WooCommerce Ajax Product filter plugin don’t make any SQL query because our plugin simply ask to WooCommerce the filtered product list.

    About Wishlist plugin, our team have already solved the issue and sent a new version to fix it for all users.

    Thanks for your reporting.

Viewing 1 replies (of 1 total)
  • The topic ‘SQL Injection vulnerability?’ is closed to new replies.