exploitDog

CVE-2023-35915

Опубликовано: 20 дек. 2023

Источник: nvd

CVSS3: 7.6

CVSS3: 9.8

EPSS Низкий

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Automattic WooPayments – Fully Integrated Solution Built and Supported by Woo.This issue affects WooPayments – Fully Integrated Solution Built and Supported by Woo: from n/a through 5.9.0.

Ссылки

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:automattic:woopayments:*:*:*:*:*:wordpress:*:*

Версия до 5.9.1 (исключая)

EPSS

Процентиль: 35%

0.00146

Низкий

7.6 High

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-m6qj-fx7x-v24r

CVSS3: 7.6

github

около 2 лет назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Automattic WooPayments – Fully Integrated Solution Built and Supported by Woo.This issue affects WooPayments – Fully Integrated Solution Built and Supported by Woo: from n/a through 5.9.0.

EPSS

Процентиль: 35%

0.00146

Низкий

7.6 High

CVSS3

9.8 Critical

CVSS3

Дефекты

CWE-89