Critical SQL Injection Vulnerability Patched in WooCommerce

On July 14, 2021, WooCommerce released an emergency patch for a SQL Injection vulnerability. This vulnerability allowed unauthenticated attackers to access arbitrary data in an online store’s database.

The Wordfence Threat Intelligence team took a deeper look at the vulnerability, and we’ve posted an analysis on the official Wordfence blog.

 

Read the Post