exploitDog

CVE-2025-31089

Опубликовано: 01 апр. 2025

Источник: nvd

CVSS3: 8.5

EPSS Низкий

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Fahad Mahmood Order Splitter for WooCommerce allows SQL Injection. This issue affects Order Splitter for WooCommerce: from n/a through 5.3.0.

Ссылки

https://patchstack.com/database/wordpress/plugin/woo-order-splitter/vulnerability/wordpress-order-splitter-for-woocommerce-5-3-0-sql-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 40%

0.00179

Низкий

8.5 High

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-qw5v-92q5-cgx7

CVSS3: 8.5

github

10 месяцев назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Fahad Mahmood Order Splitter for WooCommerce allows SQL Injection. This issue affects Order Splitter for WooCommerce: from n/a through 5.3.0.

EPSS

Процентиль: 40%

0.00179

Низкий

8.5 High

CVSS3

Дефекты

CWE-89