VYPR

Wpc Shop As Customer

by WordPress

Source repositories

CVEs (1)

  • CVE-2024-12432HigDec 18, 2024
    risk 0.53cvss 8.1epss 0.01

    The WPC Shop as a Customer for WooCommerce plugin for WordPress is vulnerable to account takeover and privilege escalation in all versions up to, and including, 1.2.8. This is due to the 'generate_key' function not producing a sufficiently random value. This makes it possible…