exploitDog

CVE-2022-42497

Опубликовано: 18 нояб. 2022

Источник: nvd

CVSS3: 10

CVSS3: 9.8

EPSS Низкий

Описание

Arbitrary Code Execution vulnerability in Api2Cart Bridge Connector plugin <= 1.1.0 on WordPress.

Ссылки

https://patchstack.com/database/vulnerability/api2cart-bridge-connector/wordpress-api2cart-bridge-connector-plugin-1-1-0-arbitrary-code-execution-vulnerability?_s_id=cve
Third Party Advisory
https://wordpress.org/plugins/api2cart-bridge-connector/#developers
Release Notes
Third Party Advisory
https://patchstack.com/database/vulnerability/api2cart-bridge-connector/wordpress-api2cart-bridge-connector-plugin-1-1-0-arbitrary-code-execution-vulnerability?_s_id=cve
Third Party Advisory
https://wordpress.org/plugins/api2cart-bridge-connector/#developers
Release Notes
Third Party Advisory

Уязвимые конфигурации

Конфигурация 1

Одно из

cpe:2.3:a:api2cart:api2cart_bridge_connector:1.0.0:*:*:*:*:wordpress:*:*

cpe:2.3:a:api2cart:api2cart_bridge_connector:1.1.0:*:*:*:*:wordpress:*:*

EPSS

Процентиль: 86%

0.02712

Низкий

10 Critical

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-89

CWE-89

Связанные уязвимости

GHSA-cxgq-ppw3-chjj

CVSS3: 9.8

github

около 3 лет назад

Arbitrary Code Execution vulnerability in Api2Cart Bridge Connector plugin <= 1.1.0 on WordPress.

EPSS

Процентиль: 86%

0.02712

Низкий

10 Critical

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-89

CWE-89