Lucene search
HistoryJul 22, 2022 - 5:15 p.m.
CVE-2022-30998
cve-2022-30998
authenticated
sql injection
wooplugins.co
homepage product organizer
woocommerce plugin
nvd
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
9.2 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.4%
Multiple Authenticated (subscriber or higher user role) SQL Injection (SQLi) vulnerabilities in WooPlugins.co’s Homepage Product Organizer for WooCommerce plugin <= 1.1 at WordPress.
Affected configurations
Node
wooplugins.cohomepage_product_organizer_for_woocommerce_\(wordpress_plugin\)Range≤1.1
CNA Affected
[
{
"product": "Homepage Product Organizer for WooCommerce (WordPress plugin)",
"vendor": "WooPlugins.co",
"versions": [
{
"lessThanOrEqual": "1.1",
"status": "affected",
"version": "<= 1.1",
"versionType": "custom"
}
]
}
]References
Social References
More
Related
patchstack
patchstack
wpvulndb
wpvulndb
Homepage Product Organizer for WooCommerce <= 1.1 - Subscriber+ SQLi
2022-07-22 00:00:00
cvelist
cvelist
prion
prion
Sql injection
2022-07-22 17:15:00
cnvd
cnvd
nvd
nvd
CVE-2022-30998
2022-07-22 17:15:08
9.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
LOW
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
LOW
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:L/A:L
9.2 High
AI Score
Confidence
High
0.001 Low
EPSS
Percentile
40.4%
Related for CVE-2022-30998