The vulnerability of the InPost plugins for WooCommerce and the InPost PL plugin for WordPress allows a hacker to execute arbitrary code.

The vulnerability of InPost plugins for WooCommerce and the InPost PL plugin for WordPress involves a lack of authentication. Exploiting this vulnerability allows a malicious actor to execute arbitrary code...

PT-2024-6122 · Microsoft · Windows

Name of the Vulnerable Software and Affected Versions: InPost for WooCommerce plugin versions 1.4.0 and earlier InPost PL plugin for WordPress versions 1.4.4 and earlier Description: The issue is related to a missing capability check on the parse request function, allowing unauthorized access and...