Vulnerability Found in WooCommerce Dynamic Pricing and Discounts
The WooCommerce Dynamic Pricing and Discounts plugin from Envato is one of many plugins of this type. In the last few weeks, we have seen several stores infected with a vulnerability in the WooCommerce Dynamic Pricing and Discounts plugin, so it is probably worth writing a few words about it.
Your website has been infected. What’s next?
You may often hear “my website has been infected” or “I have malware on my site”, but what does that mean? Also, an important question is what to do when your website has been infected.
Has your WordPress website been infected? What’s next?
Three things you can’t do:
1. Don’t log into a WordPress administration panel!
2. Don’t restore a backup!
3. Don’t install any plugins!
Three things you should do:
1. Secure the website
2. Clean infection
3. Harden and secure website for the future.
Curious about how, please read this article. “Your website has been infected. What’s next?“
Flexible Checkout Fields – what can we learn from this plugin vulnerability?
We cleaned it! In this article, we will analyse the vulnerability of the Polish plugin Flexible Checkout Fields from WP Desk, which appeared in February 2020. Let’s check the following vulnerability elements: Permissions check, sanitation, and validation.
Read full article “Flexible Checkout Fields – what we can learn from this plugin vulnerability?“