Dotstore Fraud Prevention for WooCommerce Sensitive Data Exposure Vulnerability

Vulnerability

A vulnerability allowing the exposure of sensitive system information in the Dotstore Fraud Prevention for WooCommerce plugin, specifically in versions through 2.3.1. This issue arises from the plugin's woo-blocker-lite-prevent-fake-orders-and-blacklist-fraud-customers component, which inadvertently allows the retrieval of embedded sensitive data.

Impact

Exploitation of this vulnerability could lead to unauthorized access to sensitive information that is typically restricted from regular users, potentially allowing for the exploitation of other vulnerabilities within the system.

Added: Jan 23, 2026, 5:08 PM

Updated: Jan 23, 2026, 5:08 PM

Vulnerability Rating

Custom Algorithm

spread

1.6

impact

0.6

exploitability

5.4

remediation

0.0

relevance

2.3

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Vulnerability Rating

Custom Algorithm

spread

1.6

impact

0.6

exploitability

5.4

remediation

0.0

relevance

2.3

threat

0.0

urgency

2.9

incentive

0.0

Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.

Dotstore Fraud Prevention for WooCommerce Sensitive Data Exposure Vulnerability

Vulnerability

Impact

Affected Products

Dotstore Fraud Prevention For Woocommerce

CVSS Scores

References

Vulnerability Rating

Vulnerability Rating