WordPress Design Flaw + WooCommerce Vulnerability Leads to Site Takeover

November 6th, 2018 , By Lawrence Abrams




A design flaw in the WordPress permission system used by plugins and a file deletion vulnerability in a very popular eCommerce plugin called WooCommerce could allow attackers to gain full control over a WordPress site.


WooCommerce by Automattic is a popular WordPress plugin that adds eCommerce functionality to a blog so that site owners can host their own stores. According to the WooCommerce plugin page at, there are over 4 million active installations of the plugin.


Full Article.

Take a look at the best antivirus, anti-malware, anti-spy, etc. software