Categories
WooCommerce Core

WooCommerce Vulnerability Reintroduced from 7.0.1

Background Last year we were alerted to a security issue (thanks to David Anderson) that would potentially allow users with specific capabilities (and, by default, this would include the Shop Manager role) to view user data for all users. This has the possibility of exposing sensitive information. Generally, and within WooCommerce, the information stored as […]

Categories
Developer Advisory WooCommerce Core

High Performance Order Storage is (soon to be) the New Normal

Since January 2022, we have been working hard to optimize the performance of WooCommerce by focusing on Orders and how we can more efficiently manage Order data. We wanted to improve the experience for Merchants and their customers while creating a simpler structure for developers. The result is High-Performance Order Storage (HPOS). In November, we […]

Categories
Developer Advisory WooCommerce Core

WooCommerce 7.2.1 Rollback

Developer Advisory: For the sake of transparency, here is a detailed account of why 7.2.1 was rolled back and necessitated a 7.2.2 fix release: The details How can I tell if this affects me? You will be able to quickly see if you are experiencing an issue by checking your log files. The bug produces […]