Auth. Arbitrary File Read vulnerability discovered by Tomasz Staszyszyn (Patchstack Alliance) in WordPress S2W – Import Shopify to WooCommerce plugin (versions <= 1.1.12).
Update the WordPress S2W – Import Shopify to WooCommerce plugin to the latest available version (at least 1.1.13).