Description
WordPress Plugin WooCommerce is prone to a privilege escalation vulnerability. Exploiting this issue may allow attackers to bypass the expected capabilities check and perform otherwise restricted actions; other attacks are also possible. WordPress Plugin WooCommerce version 3.5.0 is vulnerable; prior versions may also be affected.
Remediation
Update to plugin version 3.5.1 or latest
References
Related Vulnerabilities
WordPress Plugin Booking Package-Appointment Booking Calendar System Cross-Site Scripting (1.5.10)
WordPress Plugin Booking.com Banner Creator Unspecified Vulnerability (1.4.5)
Oracle Database Server CVE-2008-0341 Vulnerability (CVE-2008-0341)
Piwigo Exposure of Sensitive Information to an Unauthorized Actor Vulnerability (CVE-2011-3790)