WordPress Customer Reviews for WooCommerce plugin <= 5.3.5 - Sensitive Information Disclosure vulnerability

Vulnerability

The Customer Reviews for WooCommerce plugin for WordPress, versions 5.3.5 and earlier, contains an unauthenticated sensitive information disclosure vulnerability. This allows an attacker to access potentially confidential data via an unspecified mechanism, without needing any authentication. The vulnerability exists in the plugin's code handling data exposure, affecting all installations up to and including version 5.3.5 [1][2].

Exploitation

An attacker can exploit this vulnerability over the network without any authentication. The exact exploitation vector is not fully detailed in the available references, but the vulnerability is classified as unauthenticated, meaning no user interaction or previous access is required. The attacker likely sends crafted requests to endpoints exposed by the plugin to retrieve sensitive information [2].

Impact

Successful exploitation leads to the disclosure of sensitive information from the WordPress installation, potentially including customer data, order details, or other confidential data processed by the plugin. The impact is limited to information disclosure (confidentiality breach), without direct effect on integrity or availability [2].

Mitigation

The plugin vendor has released version 5.109.0, which presumably addresses this vulnerability. Users should update to the latest available version (5.109.0 or higher) immediately. For those unable to update, a workaround has not been provided in the available references. The vulnerability is not listed in CISA's Known Exploited Vulnerabilities catalog as of the disclosure date [1][2].