WooCommerce Object Injection Vulnerability Updated on December 28, 2020 by Scott Mitchell 0 Minutes, 25 Seconds to Read Object Injection Vulnerability on versions 2.3.11 and lower Issue: An Object Injection vulnerability has been discovered in WooCommerce. Status: Update has been released. Who is impacted? Anyone running less than v 2.3.11. Why was this update released? The web security firm Sucuri has discovered that malicious users may be able to exploit the bug to create download any file from the vulnerable server. You can read more from the Sucuri blog. What should I do? It is suggested to upgrade to WooCommerce 2.3.11 as soon as possible. Share this Article Related Articles WooCommerce Setup Guide High-Performance Order Storage on WooCommerce WooCommerce Product Addons and Extensions How to Set Up a New WooCommerce Store Migrating to WooCommerce from Shopify, BigCommerce, Volusion, OpenCart, and Magento How to Manage WooCommerce Orders and Customers How to Create an eCommerce Site How to Set Up Recurring Payments with Stripe in WooCommerce Setting Up Payment Gateways and Shipping for WooCommerce How to Launch a WooCommerce Blog
