Description
WordPress Plugin Premmerce Product Filter for WooCommerce is prone to a security bypass vulnerability. Exploiting this issue may allow attackers to perform otherwise restricted actions and subsequently perform a variety of the plugin's actions or even take over a website. WordPress Plugin Premmerce Product Filter for WooCommerce version 3.1.2 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 3.2 or latest
References
Related Vulnerabilities
Undertow Loop with Unreachable Exit Condition ('Infinite Loop') Vulnerability (CVE-2017-2670)
WordPress Plugin yolink Search for WordPress 'bulkcrawl.php' SQL Injection (1.1.4)
WordPress Plugin Media Tags Cross-Site Scripting (3.2.0.2)
Jboss EAP Improper Input Validation Vulnerability (CVE-2019-12400)