exploitDog

CVE-2025-28942

Опубликовано: 26 мар. 2025

Источник: nvd

CVSS3: 9.3

EPSS Низкий

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Trust Payments Trust Payments Gateway for WooCommerce allows SQL Injection. This issue affects Trust Payments Gateway for WooCommerce: from n/a through 1.1.4.

Ссылки

https://patchstack.com/database/wordpress/plugin/trust-payments-hosted-payment-pages-integration/vulnerability/wordpress-trust-payments-gateway-for-woocommerce-plugin-1-1-4-sql-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 27%

0.00095

Низкий

9.3 Critical

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-fjvg-cccj-287m

CVSS3: 9.3

github

11 месяцев назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Trust Payments Trust Payments Gateway for WooCommerce allows SQL Injection. This issue affects Trust Payments Gateway for WooCommerce: from n/a through 1.1.4.

EPSS

Процентиль: 27%

0.00095

Низкий

9.3 Critical

CVSS3

Дефекты

CWE-89