Lucene search
HistoryDec 06, 2022 - 9:15 p.m.
CVE-2022-45359
cve-2022-45359
wordpress
vulnerability
unauthenticated
file upload
yith woocommerce gift cards
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
58.4%
Unauth. Arbitrary File Upload vulnerability in YITH WooCommerce Gift Cards premium plugin <= 3.19.0 on WordPress.
Affected configurations
Node
yithemesyith_woocommerce_gift_cardsRange≤3.19.0premiumwordpress
Related
openvas
openvas
wordfence
wordfence
PSA: YITH WooCommerce Gift Cards Premium Plugin Exploited in the Wild
2022-12-22 17:23:55
prion
prion
Design/Logic Flaw
2022-12-06 21:15:00
hivepro
hivepro
WordPress plugin has been exploited in the wild to mount backdoors
2022-12-30 13:36:36
cvelist
cvelist
cve
cve
CVE-2022-45359
2022-12-06 21:15:10
wpvulndb
wpvulndb
YITH WooCommerce Gift Cards < 3.20.0 - Unauthenticated Arbitrary File Upload
2022-12-06 00:00:00
patchstack
patchstack
attackerkb
attackerkb
CVE-2022-45359
2022-12-06 00:00:00
packetstorm
packetstorm
WordPress Yith WooCommerce Gift Cards Premium 3.19.0 Shell Upload
2022-12-23 00:00:00
zdt
zdt
CVSS3
9.8
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
EPSS
0.002
Percentile
58.4%
Related for NVD:CVE-2022-45359