exploitDog

GHSA-cxq6-h5g6-m6cr

Опубликовано: 01 апр. 2025

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

Missing Authorization vulnerability in WPClever WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce allows Privilege Escalation. This issue affects WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce: from n/a through 1.3.5.

Missing Authorization vulnerability in WPClever WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce allows Privilege Escalation. This issue affects WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce: from n/a through 1.3.5.

Ссылки

EPSS

Процентиль: 48%

0.00254

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-862

Связанные уязвимости

CVE-2025-30825

CVSS3: 8.8

nvd

10 месяцев назад

Missing Authorization vulnerability in WPClever WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce allows Privilege Escalation. This issue affects WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce: from n/a through 1.3.5.

EPSS

Процентиль: 48%

0.00254

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-862