CVE-2024-13623: CWE-200 Exposure of Sensitive Information to an Unauthorized Actor in webfactory Order Export for WooCommerce
CVE-2024-13623 is a medium severity vulnerability in the Order Export for WooCommerce WordPress plugin that allows unauthenticated attackers to access sensitive order data stored insecurely in the /wp-content/uploads directory. This exposure occurs only when the plugin is configured to use the legacy 'WordPress posts storage' method for order data, not the default high-performance storage. The vulnerability enables attackers to extract sensitive information without authentication or user interaction, but exploitation requires high attack complexity due to the need to identify vulnerable configurations and files. No known exploits are currently reported in the wild. Organizations using affected versions of this plugin with legacy storage enabled should review their configurations and restrict access to exported order data to prevent unauthorized disclosure.
AI Analysis
Technical Summary
The vulnerability identified as CVE-2024-13623 affects the Order Export for WooCommerce plugin for WordPress, specifically all versions up to and including 3.24. It is classified under CWE-200, indicating exposure of sensitive information to unauthorized actors. The flaw arises because when the plugin is configured to use the legacy 'WordPress posts storage' method for order data, it stores exported order information in the /wp-content/uploads directory without adequate access controls. This directory is typically publicly accessible, allowing unauthenticated attackers to retrieve sensitive order data files directly. The default and more secure 'High-performance order storage' option is not vulnerable. The vulnerability has a CVSS 3.1 base score of 5.9, reflecting medium severity, with an attack vector of network (remote), no privileges required, no user interaction, but high attack complexity due to the need to locate specific files and configurations. There are no known exploits in the wild, and no patches have been linked yet. The exposure primarily impacts confidentiality, as attackers can access sensitive customer and order information, but does not affect integrity or availability.
Potential Impact
This vulnerability can lead to unauthorized disclosure of sensitive customer and order information, including potentially personally identifiable information (PII) and transaction details. Such exposure can result in privacy violations, regulatory non-compliance (e.g., GDPR), reputational damage, and increased risk of targeted phishing or fraud attacks against affected customers. Since the vulnerability does not require authentication or user interaction, it can be exploited remotely by any attacker aware of the vulnerable configuration. However, the high attack complexity limits widespread automated exploitation. Organizations relying on the legacy order data storage method in this plugin are at risk, especially if they have not restricted access to the uploads directory or monitored for unauthorized file access. The impact is primarily on confidentiality, with no direct effect on data integrity or system availability.
Mitigation Recommendations
Organizations should first verify if they are using the Order Export for WooCommerce plugin with the legacy 'WordPress posts storage' option enabled. If so, they should consider switching to the default 'High-performance order storage' method, which is not vulnerable. Additionally, access controls should be implemented on the /wp-content/uploads directory to restrict public access to exported order files, such as using .htaccess rules or web server configuration to deny direct access. Regularly auditing the uploads directory for sensitive files and removing unnecessary exports can reduce exposure. Monitoring web server logs for unusual access patterns to export files can help detect exploitation attempts. Until an official patch is released, these configuration and access control changes are critical. Keeping the plugin updated and subscribing to vendor security advisories is recommended to apply fixes promptly once available.
Affected Countries
United States, Germany, United Kingdom, Canada, Australia, France, Netherlands, India, Brazil, Japan
CVE-2024-13623: CWE-200 Exposure of Sensitive Information to an Unauthorized Actor in webfactory Order Export for WooCommerce
Description
CVE-2024-13623 is a medium severity vulnerability in the Order Export for WooCommerce WordPress plugin that allows unauthenticated attackers to access sensitive order data stored insecurely in the /wp-content/uploads directory. This exposure occurs only when the plugin is configured to use the legacy 'WordPress posts storage' method for order data, not the default high-performance storage. The vulnerability enables attackers to extract sensitive information without authentication or user interaction, but exploitation requires high attack complexity due to the need to identify vulnerable configurations and files. No known exploits are currently reported in the wild. Organizations using affected versions of this plugin with legacy storage enabled should review their configurations and restrict access to exported order data to prevent unauthorized disclosure.
AI-Powered Analysis
Technical Analysis
The vulnerability identified as CVE-2024-13623 affects the Order Export for WooCommerce plugin for WordPress, specifically all versions up to and including 3.24. It is classified under CWE-200, indicating exposure of sensitive information to unauthorized actors. The flaw arises because when the plugin is configured to use the legacy 'WordPress posts storage' method for order data, it stores exported order information in the /wp-content/uploads directory without adequate access controls. This directory is typically publicly accessible, allowing unauthenticated attackers to retrieve sensitive order data files directly. The default and more secure 'High-performance order storage' option is not vulnerable. The vulnerability has a CVSS 3.1 base score of 5.9, reflecting medium severity, with an attack vector of network (remote), no privileges required, no user interaction, but high attack complexity due to the need to locate specific files and configurations. There are no known exploits in the wild, and no patches have been linked yet. The exposure primarily impacts confidentiality, as attackers can access sensitive customer and order information, but does not affect integrity or availability.
Potential Impact
This vulnerability can lead to unauthorized disclosure of sensitive customer and order information, including potentially personally identifiable information (PII) and transaction details. Such exposure can result in privacy violations, regulatory non-compliance (e.g., GDPR), reputational damage, and increased risk of targeted phishing or fraud attacks against affected customers. Since the vulnerability does not require authentication or user interaction, it can be exploited remotely by any attacker aware of the vulnerable configuration. However, the high attack complexity limits widespread automated exploitation. Organizations relying on the legacy order data storage method in this plugin are at risk, especially if they have not restricted access to the uploads directory or monitored for unauthorized file access. The impact is primarily on confidentiality, with no direct effect on data integrity or system availability.
Mitigation Recommendations
Organizations should first verify if they are using the Order Export for WooCommerce plugin with the legacy 'WordPress posts storage' option enabled. If so, they should consider switching to the default 'High-performance order storage' method, which is not vulnerable. Additionally, access controls should be implemented on the /wp-content/uploads directory to restrict public access to exported order files, such as using .htaccess rules or web server configuration to deny direct access. Regularly auditing the uploads directory for sensitive files and removing unnecessary exports can reduce exposure. Monitoring web server logs for unusual access patterns to export files can help detect exploitation attempts. Until an official patch is released, these configuration and access control changes are critical. Keeping the plugin updated and subscribing to vendor security advisories is recommended to apply fixes promptly once available.
Technical Details
- Data Version
- 5.1
- Assigner Short Name
- Wordfence
- Date Reserved
- 2025-01-22T18:37:55.177Z
- Cvss Version
- 3.1
- State
- PUBLISHED
Threat ID: 699f6e64b7ef31ef0b59fcd6
Added to database: 2/25/2026, 9:49:24 PM
Last enriched: 2/25/2026, 11:27:34 PM
Last updated: 2/26/2026, 7:29:01 AM
Views: 2
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Related Threats
CVE-2026-25191: Uncontrolled Search Path Element in Digital Arts Inc. FinalCode Ver.5 series
HighCVE-2026-23703: Incorrect default permissions in Digital Arts Inc. FinalCode Ver.5 series
HighCVE-2026-1311: CWE-22 Improper Limitation of a Pathname to a Restricted Directory ('Path Traversal') in bearsthemes Worry Proof Backup
HighFinding Signal in the Noise: Lessons Learned Running a Honeypot with AI Assistance [Guest Diary], (Tue, Feb 24th)
MediumCVE-2026-2506: CWE-79 Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') in motahar1 EM Cost Calculator
MediumActions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console in Console -> Billing for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.