WordPress Security Alert: WooCommerce

WordPress Security Alert for WooCommerce image

A vulnerability in WooCommerce, prompts my second WordPress Security Alert today.

WooCommerce is one of the most popular WordPress plugins for eCommerce. Like my earlier WordPress Security Alert: SEO by Yoast, WooCommerce also has over one million active users. However, due to lack of the SEO plugin’s auto-update feature, WooCommerce currently has less than 30,000 updates to the latest security fix. This vulnerability was reported by Wordfence who are impressed with the Woo team’s fast response:

One of our researchers at Wordfence discovered a SQL injection vulnerability in WooCommerce yesterday. We immediately notified the Woo team and have been working with them on the issue. They released a fix this morning pacific time and we recommend you immediately upgrade.

With 3 security alerts in 2 days, you might begin to worry about the safety of WordPress. It’s right to be vigilant, but keeping your WordPress installation up-to-date will remove most risks. That’s why all my websites, and my client’s websites are protected with the best security services. When you use security plugins like Wordfence, you strengthen the community that works against WordPress vulnerabilities. We all grow stronger together.

WordPress Security Alert for WooCommerce imageOn all my hosting plans, you will be warned when updates are required. This covers the WordPress core, plugins, and themes. Constant monitoring allows you to know as soon as vulnerabilities are spotted on your website. In my advanced plans, I will monitor and update your WordPress installation for you, if you wish.

Make sure you don’t miss out on my WordPress Hosting Offers for 2015 – subscribe to Shrewdies.com Updates Service.

Read more about Shrewdies Online Business Updates.

If you need secure WordPress hosting urgently, ask me now via:

3 Replies to “WordPress Security Alert: WooCommerce”

  1. Follow WooCommerce Security Alert on Facebook:

    (function(d, s, id) { var js, fjs = d.getElementsByTagName(s)[0]; if (d.getElementById(id)) return; js = d.createElement(s); js.id = id; js.src = “//connect.facebook.net/en_GB/all.js#xfbml=1”; fjs.parentNode.insertBefore(js, fjs);}(document, ‘script’, ‘facebook-jssdk’));

Comments are closed.