CVE-2026-11360: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in algolplus Advanced Order Export For WooCommerce
The Advanced Order Export For WooCommerce plugin for WordPress is vulnerable to generic SQL Injection via the 'sort_direction' parameter in all versions up to, and including, 4.0.10 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with shop manager-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. The endpoint requires a valid woe_nonce and Shop Manager-level capabilities (view_woocommerce_reports or export_woocommerce_orders), and wp_magic_quotes protection is stripped via stripslashes_deep() before processing, allowing quote and backslash characters to survive intact into the SQL context.
AI Analysis
Technical Summary
CVE-2026-11360 describes an SQL Injection vulnerability in the Advanced Order Export For WooCommerce plugin for WordPress. The issue exists in the 'sort_direction' parameter, which is insufficiently escaped and processed without proper SQL query preparation. Authenticated attackers with shop manager-level privileges (capable of viewing WooCommerce reports or exporting orders) can exploit this flaw to inject additional SQL commands, potentially extracting sensitive data from the database. The vulnerability persists in all versions up to and including 4.0.10. The endpoint requires a valid woe_nonce and the stripping of wp_magic_quotes protection via stripslashes_deep() allows special characters to reach the SQL context unescaped. No patch or official remediation is currently documented.
Potential Impact
An attacker with shop manager-level access can exploit this vulnerability to perform SQL Injection attacks, enabling unauthorized extraction of sensitive information from the database. The vulnerability does not impact availability or integrity but compromises confidentiality. The attack requires authenticated access with specific WooCommerce capabilities, limiting the attack surface to privileged users.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until a fix is available, restrict shop manager-level access to trusted users only and monitor for unusual activity related to order exports. Avoid granting export or report viewing capabilities to untrusted accounts. Follow vendor communications for updates on patches or official mitigations.
CVE-2026-11360: CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in algolplus Advanced Order Export For WooCommerce
Description
The Advanced Order Export For WooCommerce plugin for WordPress is vulnerable to generic SQL Injection via the 'sort_direction' parameter in all versions up to, and including, 4.0.10 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, with shop manager-level access and above, to append additional SQL queries into already existing queries that can be used to extract sensitive information from the database. The endpoint requires a valid woe_nonce and Shop Manager-level capabilities (view_woocommerce_reports or export_woocommerce_orders), and wp_magic_quotes protection is stripped via stripslashes_deep() before processing, allowing quote and backslash characters to survive intact into the SQL context.
CVSS v3.1
Score 4.9medium
Affected software
Weaknesses
AI-Powered Analysis
Machine-generated threat intelligence
Technical Analysis
CVE-2026-11360 describes an SQL Injection vulnerability in the Advanced Order Export For WooCommerce plugin for WordPress. The issue exists in the 'sort_direction' parameter, which is insufficiently escaped and processed without proper SQL query preparation. Authenticated attackers with shop manager-level privileges (capable of viewing WooCommerce reports or exporting orders) can exploit this flaw to inject additional SQL commands, potentially extracting sensitive data from the database. The vulnerability persists in all versions up to and including 4.0.10. The endpoint requires a valid woe_nonce and the stripping of wp_magic_quotes protection via stripslashes_deep() allows special characters to reach the SQL context unescaped. No patch or official remediation is currently documented.
Potential Impact
An attacker with shop manager-level access can exploit this vulnerability to perform SQL Injection attacks, enabling unauthorized extraction of sensitive information from the database. The vulnerability does not impact availability or integrity but compromises confidentiality. The attack requires authenticated access with specific WooCommerce capabilities, limiting the attack surface to privileged users.
Mitigation Recommendations
Patch status is not yet confirmed — check the vendor advisory for current remediation guidance. Until a fix is available, restrict shop manager-level access to trusted users only and monitor for unusual activity related to order exports. Avoid granting export or report viewing capabilities to untrusted accounts. Follow vendor communications for updates on patches or official mitigations.
Technical Details
- Data Version
- 5.2
- Assigner Short Name
- Wordfence
- Date Reserved
- 2026-06-05T11:37:38.172Z
- Cvss Version
- 3.1
- State
- PUBLISHED
- Remediation Level
- null
Threat ID: 6a338758f198dc38c1370df9
Added to database: 6/18/2026, 5:51:20 AM
Last enriched: 6/18/2026, 6:05:58 AM
Last updated: 6/19/2026, 7:39:39 AM
Views: 10
Community Reviews
0 reviewsCrowdsource mitigation strategies, share intel context, and vote on the most helpful responses. Sign in to add your voice and help keep defenders ahead.
Want to contribute mitigation steps or threat intel context? Sign in or create an account to join the community discussion.
Actions
Updates to AI analysis require Pro Console access. Upgrade inside Console → Billing.
Need more coverage?
Upgrade to Pro Console for AI refresh and higher limits.
For incident response and remediation, OffSeq services can help resolve threats faster.
Latest Threats
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.