Security News > 2021 > August > WooCommerce Pricing Plugin Allows Malicious Code-Injection
A pair of security vulnerabilities in the WooCommerce Dynamic Pricing and Discounts plugin from Envato could allow unauthenticated attackers to inject malicious code into websites running unpatched versions.
The plugin, which has 19,700+ sales on Envato Market, offers a variety of pricing and promotion tools for online retailers, including special offers, bulk pricing, tiered pricing, bundle pricing, deals of the day, flash sales, wholesale pricing, member pricing, individual pricing, loyalty programs, behavioral pricing, location-based pricing and so on.
"An unauthenticated user can import the plugin's settings. Because some fields aren't sanitized, the attacker can inject JavaScript code into the imported JSON-encoded file."
If successful, the code will be executed on every product page of the WooCommerce e-shop, they added.
Attackers could replace JavaScript code with any HTML tags, such as a Meta Refresh tag, which could be used to redirect visitors and customers to a malicious website.
Last month for instance WooCommerce rushed emergency fixes for a critical SQL-injection security vulnerability in the core platform and a related plugin that had been under attack as a zero-day bug, for instance.
News URL
https://threatpost.com/woocommerce-plugin-malicious/169063/