Report
The Google for WooCommerce plugin for WordPress is vulnerable to Information Disclosure in all versions up to, and including, 2.8.6. This is due to publicly accessible print_php_information.php file. This makes it possible for unauthenticated attackers to retrieve information about Webserver and PHP configuration, which can be used to aid other attacks.
Score:5.3
Severity:Medium
Version: 2.8.6
There is a patch available in v2.8.7 and we strongly recommend you update to this version as soon as possible.
