Suspicious email from WordPress

buckshotapparel1200 · Member · Nov 18, 2022 at 5:47 pm
Copy link

Add topic to favorites
Hello, I want to verify an email I received that looks like it’s from WordPress but seems fishy. It says:

‘Update woocommerce immediately

PHP Object Injection Vulnerability

As per research, a PHP Object Injection vulnerability in WooCommerce (CVE-2022-25789) was discovered that allows for escalating privileges using a unique injection method. Update your sites immediately. Your website will stop working on 23.11.2022.’

Is this legit or is this a phishing attack?? From email address is (email visible only to moderators and staff)

WP.com: Yes
Correct account: Yes

The blog I need help with is: (visible only to logged in users)
staartmees · Member · Nov 19, 2022 at 6:39 am
Copy link
There is nothing suspicious. Just make sure all of your plugins are uptodate.
staartmees · Member · Nov 19, 2022 at 8:10 am
Copy link
and a link to confirm my words, https://secure.wphackedhelp.com/blog/woocommerce-hacked/

The topic ‘Suspicious email from WordPress’ is closed to new replies.

Couldn't find what you needed?

Contact us

Get answers from our AI assistant, with access to 24/7 expert human support on paid plans.

Browse our guides

Find step-by-step solutions to common questions in our comprehensive guides.