CVE-2023-28121

Name of the Vulnerable Software and Affected Versions WooCommerce Payments plugin for WordPress versions 5.6.1 and lower

Description An issue in the WooCommerce Payments plugin for WordPress allows an unauthenticated attacker to send requests on behalf of an elevated user, such as an administrator. This enables a remote, unauthenticated attacker to gain admin access on a site that has the affected version of the plugin activated. Researchers have discovered over 1 million attempts to compromise the plugin, with attacks peaking at 1.3 million on 157,000 sites. The attackers aim to gain administrator rights and install malicious plugins, allowing them to execute malicious code and capture control of vulnerable sites.

Recommendations For versions 5.6.1 and lower, update to a version higher than 5.6.1 to resolve the issue. As a temporary workaround, consider restricting access to the plugin's functionality until a patch is applied. Avoid using the plugin's elevated user features until the issue is resolved.