exploitDog

GHSA-9c49-3qrv-gxfp

Опубликовано: 22 мар. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 9.8

Описание

The Gift Cards (Gift Vouchers and Packages) WordPress Plugin, version <= 4.3.1, is affected by an unauthenticated SQL injection vulnerability in the template parameter in the wpgv_doajax_voucher_pdf_save_func action.

The Gift Cards (Gift Vouchers and Packages) WordPress Plugin, version <= 4.3.1, is affected by an unauthenticated SQL injection vulnerability in the template parameter in the wpgv_doajax_voucher_pdf_save_func action.

Ссылки

EPSS

Процентиль: 99%

0.69686

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2023-28662

CVSS3: 9.8

nvd

почти 3 года назад

The Gift Cards (Gift Vouchers and Packages) WordPress Plugin, version <= 4.3.1, is affected by an unauthenticated SQL injection vulnerability in the template parameter in the wpgv_doajax_voucher_pdf_save_func action.

EPSS

Процентиль: 99%

0.69686

Средний

9.8 Critical

CVSS3

CVE ID

Дефекты

CWE-89