Web Vulnerability Report
ID | CVE-2022-3481 |
CVSS 3.0 | 9.8 |
Cloudbric Score
?
|
Critical |
Cloudbric Detection | Yes |
Vulnerability Type | Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') |
Published Date | 2022-11-07 |
Updated Date | 2023-02-03 |
Vendor | N/A |
Description | The WooCommerce Dropshipping WordPress plugin before 4.4 does not properly sanitise and escape a parameter before using it in a SQL statement via a REST endpoint available to unauthenticated users, leading to a SQL injection |
Reference | https://wpscan.com/vulnerability/c5e395f8-257e-49eb-afbd-9c1e26045373 |
URL Link | https://nvd.nist.gov/vuln/detail/CVE-2022-3481 |
This vulnerability has been detected by Cloudbric!
Block NOW!
ID | Description | Vulnerability Type |
Cloudbric Score
?
|
Updated Date | Detection |
---|
To receive weekly updates on new vulnerabilities added to Threat Index
Subscribe Now