WooCommerce <= 3.6.4 - Cross-Site Request Forgery (CSRF) & File Type Check



Description
Changelog mentions:

Security – Introduce file type check for tax rate importer.
Security – Added nonce check to CSV importer actions.

RIPS Tech later released an advisory detailing the vulnerability, which can be found in the references.

Affects Plugin

fixed in version 3.6.5

References

URL https://blog.ripstech.com/2019/woocommerce-csrf-to-stored-xss/
URL https://plugins.trac.wordpress.org/changeset?reponame=&new=2116363%40woocommerce&old=2096035%40woocommerce
URL https://twitter.com/WooCommerce/status/1147543261814374401
URL https://woocommerce.wordpress.com/2019/07/02/woocommerce-3-6-5-security-release/

Classification

Type CSRF
CWE CWE-352

Miscellaneous

Original Researcher RIPS Tech
Views 8775
Verified No
WPVDB ID 9428

Timeline

Publicly Published 2019-07-07 (4 months ago)
Added 2019-07-07 (4 months ago)
Last Updated 2019-10-08 (about 1 month ago)

Our Other Services

Online WordPress Vulnerability Scanner WPScan WordPress Security Plugin