Critical SQL Injection Vulnerability Patched In WooCommerce

Bijay Pokharel, July 18, 2021 0 1 min read

A critical SQL injection vulnerability was discovered in WooCommerce, the most popular e-Commerce plugin used by over 5 million WordPress sites.

The WordPress.org team pushed a forced security update ensuring that over 90 versions of WooCommerce were patched.

On July 14, 2021, WooCommerce released an emergency patch for a SQL Injection vulnerability reported by a security researcher, Josh from DOS (Development Operations Security), based in Richmond Virginia. This vulnerability allowed unauthenticated attackers to access arbitrary data in an online store’s database.

The vulnerability affects versions 3.3 to 5.5 of the WooCommerce plugin and WooCommerce Blocks 2.5 to 5.5 plugin.

READ

Russia Sentences REvil Ransomware Members to Over 4 Years in Prison Following Global Cyber Crackdown

IT NEWS & UPDATES

Japan Smashes World Record For Data Transmission Speed With 319 Tb/s

IT NEWS & UPDATES

Tesla Launches Self Driving Subscriptions For $199 A Month

Bijay Pokharel

Bijay Pokharel is the creator and owner of Abijita.com. He is a freelance technology writer focusing on all things pertaining to Cyber Security. The topics he writes about include malware, vulnerabilities, exploits, internet defense, women's safety and privacy, as well as research and innovation in information security. He is a tech enthusiast, keen learner, rational and cool person in his professional activities and challenges.

SIGN UP FOR NEWSLETTERS

Please confirm your email address.

Sign up for cybersecurity newsletter and get latest news updates delivered straight to your inbox. You are also consenting to our Privacy Policy and Terms of Use.

Subscribe

Cybersecurity Newsletter

You have Successfully Subscribed!

Recent Posts

Delta Sues CrowdStrike Over Major July IT Outage

Apple Wins Mixed Verdict in Patent Case Against Masimo

Chinese Hackers Targeted Phones Linked to U.S. Campaigns of Kamala Harris and Donald Trump, Reports Say

Alibaba Agrees to $433.5 Million Settlement in U.S. Class-Action Lawsuit Over Alleged Monopolistic Practices

Nvidia Surpasses Apple as World’s Most Valuable Company Amid AI Chip Boom

Russia Sentences REvil Ransomware Members to Over 4 Years in Prison Following Global Cyber Crackdown

Subscribe

Cybersecurity Newsletter

You have Successfully Subscribed!

SIGN UP FOR NEWSLETTERS

Please confirm your email address.

Subscribe

Cybersecurity Newsletter

You have Successfully Subscribed!

Critical SQL Injection Vulnerability Patched In WooCommerce

Bijay Pokharel

Related posts

How To Install cPanel/WHM on AWS Instances EC2 | Virtual Private Server

Facebook Expects Half Its Employees To Work Remotely Permanently

What Is Metadata And How To Remove Metadata?

REvil Ransomware Gang Are Demanding $50 Million From Apple To Avoid Documents Leaked

‘Evil Telegram’ Android Apps on Google Play Infected 60K with Spyware

Everything You Need To Know About PayPal Service In Nepal

Leave a Reply Cancel reply

Recent Posts

Delta Sues CrowdStrike Over Major July IT Outage

Apple Wins Mixed Verdict in Patent Case Against Masimo

Chinese Hackers Targeted Phones Linked to U.S. Campaigns of Kamala Harris and Donald Trump, Reports Say

Alibaba Agrees to $433.5 Million Settlement in U.S. Class-Action Lawsuit Over Alleged Monopolistic Practices

Nvidia Surpasses Apple as World’s Most Valuable Company Amid AI Chip Boom

Russia Sentences REvil Ransomware Members to Over 4 Years in Prison Following Global Cyber Crackdown

Subscribe

Cybersecurity Newsletter

You have Successfully Subscribed!

SIGN UP FOR NEWSLETTERS

Please confirm your email address.