Support » Plugin: WooCommerce » Vulnerability in 2.4.12

Viewing 2 replies - 1 through 2 (of 2 total)
  • David Anderson

    (@davidanderson)

    I’m seeing no vulnerability in WC here. The posted “proof of concept” does not correspond to anything in the WooCommerce source code – there’s no ‘setListingType’ or ‘items_per_page’ parameter in existence. Nor does trying the “proof of concept” on any of my test sites do anything.

    Andrew Nevins

    (@anevins)

    WCLDN 2018 Contributor | Volunteer support

    @adrian.ghermanescu, Please don’t expose vulnerabilities on these forums. If you want to make a plugin author aware of a vulnerability then you need to contact that author directly.

Viewing 2 replies - 1 through 2 (of 2 total)
  • The topic ‘Vulnerability in 2.4.12’ is closed to new replies.