Lucene search
PatchstackCVELIST:CVE-2022-45359HistoryDec 06, 2022 - 8:36 p.m.
CVE-2022-45359 WordPress YITH WooCommerce Gift Cards Premium Plugin <= 3.19.0 is vulnerable to Arbitrary File Upload
2022-12-0620:36:45
CWE-434
Patchstack
www.cve.org
6
wordpress
yith woocommerce
gift cards
arbitrary file upload
vulnerability
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.7
Confidence
High
EPSS
0.002
Percentile
58.4%
Unauth. Arbitrary File Upload vulnerability inΒ YITH WooCommerce Gift Cards premium plugin <=Β 3.19.0 on WordPress.
CNA Affected
[
{
"defaultStatus": "unaffected",
"product": "YITH WooCommerce Gift Cards",
"vendor": "YITH",
"versions": [
{
"changes": [
{
"at": "3.20.0",
"status": "unaffected"
}
],
"lessThanOrEqual": "3.19.0",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
hivepro
hivepro
WordPress plugin has been exploited in the wild to mount backdoors
2022-12-30 13:36:36
prion
prion
Design/Logic Flaw
2022-12-06 21:15:00
wordfence
wordfence
PSA: YITH WooCommerce Gift Cards Premium Plugin Exploited in the Wild
2022-12-22 17:23:55
openvas
openvas
patchstack
patchstack
attackerkb
attackerkb
CVE-2022-45359
2022-12-06 00:00:00
zdt
zdt
packetstorm
packetstorm
WordPress Yith WooCommerce Gift Cards Premium 3.19.0 Shell Upload
2022-12-23 00:00:00
wpvulndb
wpvulndb
YITH WooCommerce Gift Cards < 3.20.0 - Unauthenticated Arbitrary File Upload
2022-12-06 00:00:00
nvd
nvd
CVE-2022-45359
2022-12-06 21:15:10
cve
cve
CVE-2022-45359
2022-12-06 21:15:10
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
AI Score
9.7
Confidence
High
EPSS
0.002
Percentile
58.4%
Related for CVELIST:CVE-2022-45359