A vulnerability, which was classified as critical , has been found in algolplus Advanced Order Export for WooCommerce Plugin up to 4.0.10 on WordPress. Affected by this vulnerability is the function stripslashes_deep of the component Endpoint . This manipulation of the argument sort_direction causes sql injection. This vulnerability appears as CVE-2026-11360 . The attack may be initiated remotely. There is no available exploit.