A critical vulnerability was spotted on WordPress WooCommerce Payments plugin, which allowed hackers to get access to user privileges. These include administration access upon vulnerable WordPress installation.
WordPress WooCommerce Payments Plugin Had Over 600,000 Active Installations