Lucene search
WPScanCVELIST:CVE-2022-3490HistoryNov 28, 2022 - 1:47 p.m.
CVE-2022-3490 Checkout Field Editor for WooCommerce < 1.8.0 - Admin+ PHP Object Injection
2022-11-2813:47:16
WPScan
www.cve.org
2
woocommerce
checkout manager
php object injection
admin
cve-2022-3490
EPSS
0.001
Percentile
43.0%
The Checkout Field Editor (Checkout Manager) for WooCommerce WordPress plugin before 1.8.0 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present
CNA Affected
[
{
"vendor": "Unknown",
"product": "Checkout Field Editor (Checkout Manager) for WooCommerce",
"collectionURL": "https://wordpress.org/plugins",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "0",
"lessThan": "1.8.0"
}
],
"defaultStatus": "unaffected"
}
]Related
wpvulndb
wpvulndb
Checkout Field Editor for WooCommerce < 1.8.0 - Admin+ PHP Object Injection
2022-11-07 00:00:00
openvas
openvas
cnvd
cnvd
prion
prion
Design/Logic Flaw
2022-11-28 14:15:00
nvd
nvd
CVE-2022-3490
2022-11-28 14:15:12
patchstack
patchstack
wpexploit
wpexploit
Checkout Field Editor for WooCommerce < 1.8.0 - Admin+ PHP Object Injection
2022-11-07 00:00:00
cve
cve
CVE-2022-3490
2022-11-28 14:15:12