If the site repeatedly uses the same password, the payment gateway and woocommerce API key cycle used on the site will be updated with the passwords of all administrators of the site. As a store owner, you ultimately decide whether to take other precautions, such as resetting customer passwords. WordPress (and therefore woocommerce) user passwords use solt hashes, making it difficult to decipher the resulting hash values. The password hash method applies to all users on this site.
Is woocomerce still safe to use? Yes. Such accidents are rare, but unfortunately they happen occasionally. Our intention is to respond at any time and operate in a fully transparent manner. Since knowing the vulnerability, the team has worked hard to make the modification effective and notify users within 24 hours. Through the continuous investment in platform security, although most problems can be avoided, it will rarely have a potential impact on the store, but we will modify it quickly, communicate in advance and strive to cooperate with woocommerce community. But what if there’s a problem? The happiness engineer team can help you solve these problems if you have other concerns or problems. Open the support ticket.
