Critical Unpatched Flaw Disclosed in WordPress WooCommerce Extension (Apr 26, 2019)
A vulnerability in the "WooCommerce" plugin has been identified by Plugin Vulnerabilities. WooCommerce Checkout Manager, is a plugin used by WordPress e-commerce sites for customised checkout forms. The "Categorize Uploaded Files" option in WooCommerce Checkout Manager is where the vulnerability lies. Using this file uploader, remote attackers could execute server-side scripts to gain entry and modify data or gain admin privileges. WooCommerce Checkout Manager is currently being used by more than 60,000 websites, with the latest plugin, 4.2.6, being vulnerable.
Recommendation: If using the WooCommerce plugin, users are advised to disable the "Categorize Uploaded Files" option on their site, or disable the entire WooCommerce Checkout Manager plugin, until a patched version is released. It is always critical to run input validation checks on any field or function that allows a user to upload.
Indicators of Compromise (IOCs) associated with this story can be viewed by ThreatStream users here to identify potential malicious activity.