exploitDog

CVE-2025-47588

Опубликовано: 06 нояб. 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Improper Control of Generation of Code ('Code Injection') vulnerability in acowebs Dynamic Pricing With Discount Rules for WooCommerce aco-woo-dynamic-pricing allows Code Injection.This issue affects Dynamic Pricing With Discount Rules for WooCommerce: from n/a through <= 4.5.9.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/aco-woo-dynamic-pricing/vulnerability/wordpress-dynamic-pricing-with-discount-rules-for-woocommerce-plugin-4-5-9-arbitrary-code-execution-vulnerability?_s_id=cve

EPSS

Процентиль: 22%

0.00071

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-94

Связанные уязвимости

GHSA-3388-vwwc-36qr

CVSS3: 9.8

github

3 месяца назад

Improper Control of Generation of Code ('Code Injection') vulnerability in acowebs Dynamic Pricing With Discount Rules for WooCommerce aco-woo-dynamic-pricing allows Code Injection.This issue affects Dynamic Pricing With Discount Rules for WooCommerce: from n/a through <= 4.5.9.

EPSS

Процентиль: 22%

0.00071

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-94