CVE-2022-4047

🗓️ 26 Dec 2022 13:12:15Reported by [email protected]Type

The Return Refund and Exchange For WooCommerce WordPress plugin has a file upload vulnerability allowing unauthenticated users to upload arbitrary files leading to RCE

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 8
Vulnrichment	CVE-2022-4047 Return Refund and Exchange For WooCommerce < 4.0.9 - Unauthenticated Arbitrary File Upload	26 Dec 202212:28	–	vulnrichment
WPVulnDB	Return Refund and Exchange For WooCommerce < 4.0.9 - Unauthenticated Arbitrary File Upload	5 Dec 202200:00	–	wpvulndb
CVE	CVE-2022-4047	26 Dec 202213:15	–	cve
wpexploit	Return Refund and Exchange For WooCommerce < 4.0.9 - Unauthenticated Arbitrary File Upload	5 Dec 202200:00	–	wpexploit
GithubExploit	Exploit for CVE-2022-4047	26 Sep 202307:23	–	githubexploit
GithubExploit	Exploit for CVE-2022-4047	14 Dec 202307:36	–	githubexploit
Prion	Design/Logic Flaw	26 Dec 202213:15	–	prion
Cvelist	CVE-2022-4047 Return Refund and Exchange For WooCommerce < 4.0.9 - Unauthenticated Arbitrary File Upload	26 Dec 202212:28	–	cvelist

Nvd

Node

wpswings return_refund_and_exchange_for_woocommerceRange<4.0.9wordpress

Source	Link
wpscan	www.wpscan.com/vulnerability/8965a87c-5fe5-4b39-88f3-e00966ca1d94

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

26 Dec 2022 13:15Current

CVSS39.8

EPSS0.6701