WPGraphQL WooCommerce <= 0.11.0 – Unauthenticated Coupon Codes Disclosure
Discription
The plugin does not prevent unauthenticated attackers from enumerating a shop’s coupon codes and values via GraphQL.
### PoC
The PoC will be displayed on August 09, 2022, to give users the time to update.Read More
References
Back to Main