exploitDog

CVE-2025-48100

Опубликовано: 28 авг. 2025

Источник: nvd

CVSS3: 9.1

EPSS Низкий

Описание

Improper Control of Generation of Code ('Code Injection') vulnerability in extremeidea bidorbuy Store Integrator allows Remote Code Inclusion. This issue affects bidorbuy Store Integrator: from n/a through 2.12.0.

Ссылки

https://patchstack.com/database/wordpress/plugin/bidorbuystoreintegrator/vulnerability/wordpress-bidorbuy-store-integrator-plugin-2-10-0-remote-code-execution-rce-vulnerability?_s_id=cve

EPSS

Процентиль: 25%

0.00085

Низкий

9.1 Critical

CVSS3

Дефекты

CWE-94

Связанные уязвимости

GHSA-v94r-v95m-fw6m

CVSS3: 9.1

github

5 месяцев назад

Improper Control of Generation of Code ('Code Injection') vulnerability in extremeidea bidorbuy Store Integrator allows Remote Code Inclusion. This issue affects bidorbuy Store Integrator: from n/a through 2.12.0.

EPSS

Процентиль: 25%

0.00085

Низкий

9.1 Critical

CVSS3

Дефекты

CWE-94