A vulnerability has been found in BuddyPress WooCommerce my Account Integration Plugin up to 3.4.20 on WordPress and classified as critical. Affected by this vulnerability is the function
get_simple_request
. The manipulation leads to code injection.
This vulnerability is known as CVE-2024-2025. The attack can be launched remotely. There is no exploit available.