CVE-2024-34751

Name of the Vulnerable Software and Affected Versions WebToffee Order Export & Order Import for WooCommerce versions n/a through 2.4.9

Description The issue is related to Deserialization of Untrusted Data, which affects the WebToffee Order Export & Order Import for WooCommerce plugin. This could potentially allow an attacker to exploit the vulnerability by manipulating the deserialization process. No information is provided about the estimated number of potentially affected devices worldwide or real-world incidents where this issue was exploited.

Recommendations For versions n/a through 2.4.9, update to a version later than 2.4.9 to resolve the issue. As a temporary workaround, consider restricting access to the plugin until a patch is available.