1. Symantec/
  2. Security Response/
  3. Attack Signatures/
  4. Web Attack: WordPress WooCommerce Plugin LFI

Web Attack: WordPress WooCommerce Plugin LFI

Severity: High

This attack could pose a serious security threat. You should take immediate action to stop any damage or prevent further damage from happening.

Description

This signature detects attempts to exploit a local file inclusion vulnerability in WorPress WooCommerce Plugin.

Additional Information

WordPress is a PHP-based content manager. WooCommerce is a plugin for WordPress.

The WooCommerce plugin for WordPress is prone to a local file inclusion vulnerability because it fails to sufficiently sanitize user-supplied input.

Affected

  • WorPress WooCommerce Plugin.

Response


  • Twitter
  • Facebook
  • LinkedIn
  • Google+
  • YouTube