Dropshix <= 4.0.11 - Arbitrary Product Import



Description
Due to lack of authorisation and CSRF checks in the AJAX function xoxImportItem()

Affects Plugin

fixed in version 4.0.14

References

URL https://plugins.trac.wordpress.org/changeset?reponame=&new=2108289%40dropshipping-xox&old=2043051%40dropshipping-xox

Classification

Type MULTI

Miscellaneous

Views 2745
Verified No
WPVDB ID 9364

Timeline

Publicly Published 2019-06-15 (5 months ago)
Added 2019-06-20 (5 months ago)
Last Updated 2019-06-20 (5 months ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin