CVE-2022-41623 – WordPress ALD - AliExpress Dropshipping and Fulfillment for WooCommerce premium plugin <= 1.1.0 - Sensitive Data Exposure vulnerability

https://notcve.org/view.php?id=CVE-2022-41623

Sensitive Data Exposure in Villatheme ALD - AliExpress Dropshipping and Fulfillment for WooCommerce premium plugin <= 1.1.0 on WordPress. Una Exposición de Datos Confidenciales en el plugin Villatheme ALD - AliExpress Dropshipping and Fulfillment for WooCommerce premium versiones anteriores a 1.1.0 incluyéndola en WordPress The AliExpress Dropshipping and Fulfillment for WooCommerce Premium plugin for WordPress is vulnerable to Sensitive Data Exposure in versions up to, and including, 1.1.0. This could allow unauthenticated attackers to extract sensitive user or configuration data. • https://patchstack.com/database/vulnerability/woocommerce-alidropship/wordpress-ald-aliexpress-dropshipping-and-fulfillment-for-woocommerce-plugin-1-1-0-sensitive-data-exposure?_s_id=cve https://villatheme.com/extensions/aliexpress-dropshipping-and-fulfillment-for-woocommerce/#tab-changelog • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor CWE-202: Exposure of Sensitive Information Through Data Queries •