exploitDog

CVE-2025-39496

Опубликовано: 28 авг. 2025

Источник: nvd

CVSS3: 9.3

EPSS Низкий

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WBW WooBeWoo Product Filter Pro allows SQL Injection.This issue affects WooBeWoo Product Filter Pro: from n/a before 2.9.6.

Ссылки

https://patchstack.com/database/wordpress/plugin/woofilter-pro/vulnerability/wordpress-woobewoo-product-filter-pro-plugin-2-7-6-sql-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 10%

0.00035

Низкий

9.3 Critical

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-3j3g-j654-w22x

CVSS3: 9.3

github

5 месяцев назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WBW WooBeWoo Product Filter Pro allows SQL Injection.This issue affects WooBeWoo Product Filter Pro: from n/a before 2.9.6.

EPSS

Процентиль: 10%

0.00035

Низкий

9.3 Critical

CVSS3

Дефекты

CWE-89