Lucene search
China National Vulnerability DatabaseCNVD-2022-62173HistoryJul 19, 2022 - 12:00 a.m.
WordPress plugin WooCommerce code injection vulnerability
2022-07-1900:00:00
China National Vulnerability Database
www.cnvd.org.cn
20
0.001 Low
EPSS
Percentile
25.0%
WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. The platform supports the hosting of personal blog sites on servers with PHP and MySQL. WordPress plugin is an application plugin. WordPress plugin WooCommerce versions prior to 6.6.0 have a code injection vulnerability that stems from a lack of cleanup and escaping in the payment gateway header. No detailed vulnerability details are currently available.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress woocommerce | lt | 6.6.0 |
Related
wpvulndb
wpvulndb
WooCommerce < 6.6.0 - Admin+ Stored HTML Injection
2022-06-20 00:00:00
prion
prion
Design/Logic Flaw
2022-07-17 11:15:00
osv
osv
CVE-2022-2099
2022-07-17 11:15:08
patchstack
patchstack
cve
cve
CVE-2022-2099
2022-07-17 11:15:08
github
github
wpexploit
wpexploit
WooCommerce < 6.6.0 - Admin+ Stored HTML Injection
2022-06-20 00:00:00
cvelist
cvelist
CVE-2022-2099 WooCommerce < 6.6.0 - Admin+ Stored HTML Injection
2022-07-17 10:35:52
openvas
openvas
WordPress WooCommerce Plugin < 6.6.0 Stored HTML Injection Vulnerability
2022-07-18 00:00:00
nvd
nvd
CVE-2022-2099
2022-07-17 11:15:08