Bleeping Computer

Hackers exploiting critical WordPress WooCommerce Payments bug

Hackers are conducting widespread exploitation of a critical WooCommerce Payments plugin to gain the privileges of any users, including administrators, on vulnerable WordPress installation.
Searchenginejournal.com

WooCommerce WordPress Plugin Exploit Enables Fraudulent Charges

The WooCommerce Square plugin enables WordPress sites to accept payments through the Square POS, as well as synchronize product inventory data between Square and WooCommerce. Square plugin enables a ...
TechRadar

Serious WooCommerce vulnerability threatens millions of WordPress websites

WooCommerce, a popular WordPress plugin for rolling out e-commerce stores, has issued an emergency patch to plug a SQL Injection vulnerability. The vulnerability could be abused by unauthorized ...