First published: Fri Nov 18 2022(Updated: )
Auth. (subscriber+) Sensitive Data Exposure vulnerability in Phone Orders for WooCommerce plugin <= 3.7.1 on WordPress.
Credit: audit@patchstack.com
Affected Software | Affected Version | How to fix |
---|---|---|
Algolplus Phone Orders For Woocommerce | <3.7.2 |
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
The vulnerability ID is CVE-2022-41655.
The title of this vulnerability is Auth. (subscriber+) Sensitive Data Exposure vulnerability in Phone Orders for WooCommerce plugin <= 3.7.1 on WordPress.
The Phone Orders for WooCommerce plugin version <= 3.7.1 on WordPress is affected by this vulnerability.
The severity of CVE-2022-41655 is medium with a CVSS score of 6.5.
To fix the vulnerability CVE-2022-41655, please update the Phone Orders for WooCommerce plugin to version 3.7.2 or later.