WordPress Plugin Vulnerabilities

Order Export for WooCommerce < 3.25 - Unauthenticated Sensitive Information Exposure Through Unprotected Directory

Description

The Order Export for WooCommerce plugin for WordPress is vulnerable to Sensitive Information Exposure in all versions up to, and including, 3.24 via the 'uploads' directory. This makes it possible for unauthenticated attackers to extract sensitive data stored insecurely in the /wp-content/uploads directory which can contain exported order information. The plugin is only vulnerable when 'Order data storage' is set to 'WordPress posts storage (legacy)', and cannot be exploited when the default option of 'High-performance order storage' is enabled.

Affects Plugins

Plugin icon
order-export-and-more-for-woocommerce
Fixed in 3.25

References

CVE
CVE-2024-13623
URL
https://www.wordfence.com/threat-intel/vulnerabilities/id/18d6dffd-8df3-4611-ad94-6d806aa7328a

Classification

Type
SENSITIVE DATA DISCLOSURE
OWASP top 10
A3: Sensitive Data Exposure
CWE
CWE-200
CVSS
5.9 (medium)

Miscellaneous

Original Researcher
Tim Coen
Verified
No
WPVDB ID
581025bf-bef1-4c54-aced-c371d1360204

Timeline

Publicly Published
2025-01-30 (about 1 year ago)
Added
2025-01-30 (about 1 year ago)
Last Updated
2025-01-31 (about 1 year ago)

Other

Published
Title
Published
2025-07-16
Title
JetTricks < 1.5.4.2 - Authenticated (Subscriber+) Information Exposure
Published
2024-04-22
Title
Simply Static < 3.1.4 - Unauthenticated Information Exposure
Published
2024-02-12
Title
Frontend File Manager < 22.8 - Sensitive Information Exposure via user uploads
Published
2026-06-10
Title
ABC Crypto Checkout < 1.8.3 - Unauthenticated Information Exposure
Published
2024-07-23
Title
WP Meteor Website Speed Optimization Addon < 3.4.4 - Unauthenticated Full Path Disclosure