The most recent version of the WordPress plugin Product Table for WooCommerce had a very important security fix, though you wouldn’t know that by looking at the changelog for that version, as there isn’t one. Those relying on a couple of our competitors, WPScan and Patchstack, wouldn’t have a full understanding of that either, as they somehow managed to miss the full scope of a vulnerability being addressed.

Based on what we saw while reviewing the change being made, there was reason to believe there could be additional security issues in the plugin. We have confirmed that is the case and we would recommend not using the plugin, unless it has thorough security review and all issues are addressed. [Read more]