exploitDog

CVE-2025-30825

Опубликовано: 01 апр. 2025

Источник: nvd

CVSS3: 8.8

EPSS Низкий

Описание

Missing Authorization vulnerability in WPClever WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce allows Privilege Escalation. This issue affects WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce: from n/a through 1.3.5.

Ссылки

https://patchstack.com/database/wordpress/plugin/wpc-smart-linked-products/vulnerability/wordpress-wpc-smart-linked-products-plugin-1-3-5-privilege-escalation-vulnerability?_s_id=cve

EPSS

Процентиль: 48%

0.00254

Низкий

8.8 High

CVSS3

Дефекты

CWE-862

Связанные уязвимости

GHSA-cxq6-h5g6-m6cr

CVSS3: 8.8

github

10 месяцев назад

Missing Authorization vulnerability in WPClever WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce allows Privilege Escalation. This issue affects WPC Smart Linked Products - Upsells & Cross-sells for WooCommerce: from n/a through 1.3.5.

EPSS

Процентиль: 48%

0.00254

Низкий

8.8 High

CVSS3

Дефекты

CWE-862