Product Import Export for WooCommerce Server-Side Request Forgery Vulnerability

A server-side request forgery (SSRF) vulnerability has been identified in the Product Import Export for WooCommerce - Import Export Product CSV Suite plugin for WordPress, affecting all versions prior to and including 2.5.0. The vulnerability arises in the validate_file() function, allowing authenticated attackers with administrator-level access to make web requests to arbitrary locations from the web application. This could be exploited to query and modify information from internal services.

Impact

Exploitation of this vulnerability allows for server-side request forgery, enabling authenticated attackers to make requests to internal services and potentially manipulate sensitive information.

Reproduction

To reproduce this vulnerability, an authenticated user with administrator-level access can upload a file through the import feature of the WooCommerce Product Import Export plugin. During the file upload process, the validate_file() function is called, which contains the server-side request forgery vulnerability. The attacker can exploit this by sending a crafted request that is processed by the vulnerable function, allowing them to make unauthorized requests to internal services.

Remediation

Users are advised to update the Product Import Export for WooCommerce - Import Export Product CSV Suite plugin to version 2.5.1 or later, where this vulnerability has been fixed.