ReviewX WooCommerce Plugin Sensitive Information Exposure Vulnerability

A vulnerability allowing sensitive information exposure has been identified in the ReviewX – WooCommerce Product Reviews with Multi-Criteria, Reminder Emails, Google Reviews, Schema & More plugin for WordPress. This issue affects all versions through 2.2.12 and arises in the syncedData function, where unauthenticated attackers can access sensitive data such as user names, emails, phone numbers, and addresses.

Impact

Exploitation of this vulnerability allows for unauthorized access to sensitive user information, including names, email addresses, phone numbers, and physical addresses.

Reproduction

The vulnerability can be reproduced by sending a request to the syncedData function of the affected plugin. This can be done through the WordPress REST API without authentication. The request should include the 'post_type' parameter, which can be set to 'product' or another post type. If the specified file for the post type exists, the server will respond with the sensitive data.

Remediation

Users are advised to update the ReviewX WooCommerce plugin to version 2.3.0 or later.