exploitDog

CVE-2025-52773

Опубликовано: 06 нояб. 2025

Источник: nvd

CVSS3: 9.8

EPSS Низкий

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in hiecor HieCOR Payment Gateway Plugin hcv4-payment-gateway allows SQL Injection.This issue affects HieCOR Payment Gateway Plugin: from n/a through <= 1.5.11.

Ссылки

https://patchstack.com/database/Wordpress/Plugin/hcv4-payment-gateway/vulnerability/wordpress-hiecor-payment-gateway-plugin-plugin-1-5-11-sql-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 14%

0.00046

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-vqw7-x8r5-hmjx

CVSS3: 9.8

github

3 месяца назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in hiecor HieCOR Payment Gateway Plugin hcv4-payment-gateway allows SQL Injection.This issue affects HieCOR Payment Gateway Plugin: from n/a through <= 1.5.11.

EPSS

Процентиль: 14%

0.00046

Низкий

9.8 Critical

CVSS3

Дефекты

CWE-89