Bleeping Computer

WordPress force patching WooCommerce plugin with 500K installs

Automattic, the company behind the WordPress content management system, is force installing a security update on hundreds of thousands of websites running the highly popular WooCommerce Payments for ...
Searchenginejournal.com

WordPress WooCommerce Payments Plugin Vulnerability

Automattic, publishers of the WooCommerce plugin, announced the discovery and patch of a critical vulnerability in the WooCommerce Payments plugin. The vulnerability allows an attacker to gain ...
Threat Post

80K Retail WooCommerce Sites Exposed by Plugin XSS Bug

The Variation Swatches plugin security flaw lets attackers with low-level permissions tweak important settings on e-commerce sites to inject malicious scripts. The plugin “Variation Swatches for ...
Infosecurity-magazine.com

WooCommerce Bug Exploited in Targeted WordPress Attacks

Security researchers have recorded over one million attempts to compromise a popular WordPress plugin over the past few days. Wordfence said the attacks began on July 14 and continued over the weekend ...