Categories
Core

WooCommerce 4.2.1 Security and Fix Release

We’ve shipped a new release containing some security improvements for SelectWoo as well as other minor bugfixes. Here is the changelog for the release: We highly recommend updating WooCommerce to this version as soon as possible. Download the latest release of WooCommerce here or visit Dashboard → Updates to update the plugin from your WordPress […]

Categories
Core

Security update: Best practices for securing your WooCommerce site

Last week, Sucuri’s Ben Martin wrote about his recent experience with a client’s WooCommerce site that had been breached by a malicious credit card swiper (or “skimmer”) code injection. While this may appear alarming, it’s important to note that the attack in question required a person with “complete” access to the site to modify its […]

Categories
Core

WooCommerce 3.2.4 security/fix release notes

WooCommerce 3.2.4 is now available. This is a security release for all previous versions and we strongly encourage you to update your sites as soon as possible.

Categories
Core

WooCommerce 2.6.9 Security/Fix Release Notes

The WooCommerce 2.6.9 security/fix release is now available. You can download it on WordPress.org or as an automatic update in your administration panel. ~44 commits made it into this release fixing several minor issues and taking care of some security hardening. The main change was that we updated WooCommerce for compatibility with WordPress 4.7 and the […]

Categories
Core

WooCommerce 2.6.4 Fix/Security Release Notes

The WooCommerce 2.6.4 fix/security release is now available. You can download it on WordPress.org or as an automatic update in your administration panel. ~20 commits made it into this release fixing several minor issues. The main changes are as follows. The REST API image upload feature has been locked down to only allow images, vs all supported WordPress […]