WooCommerce 3.7.1 Security Release

WooCommerce 3.7.1 is now available. Since this release only contains fixes to harden security, we encourage you to update your stores as soon as possible.

* Security - Add an exit after the redirect when checking author archive capabilities for customers.
* Security - Ensure 404 pages with single product urls cannot be exploited using Open Redirect.

Download the latest release of WooCommerce here or venture over to Dashboard → Updates to update your plugins from your WordPress admin panel.

As usual, if you spot any other issues in WooCommerce core please log them in detail on Github, and to disclose a security issue to our team, please submit a report via HackerOne here.


Keep yourself in the loop!

This field is hidden when viewing the form
This field is hidden when viewing the form
This field is hidden when viewing the form