WooCommerce 3.7.1 Security Update

·

·

WooCommerce 3.7.1 brings two security fixes. The fixes only harden WooCommerce and do not fix vulnerabilities. We might have to wait for the next major release for them to be fixed entirely.

Security Fixes

  • Add an exit after the redirect when checking author archive capabilities for customers.
  • Ensure 404 pages with single product urls cannot be exploited using Open Redirect.

Remember to create a backup before installing updates.