Lucene search
HistoryApr 25, 2024 - 9:15 a.m.
CVE-2024-31266
code injection
vulnerability
algolplus
order export
woocommerce
CVSS3
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
AI Score
9.4
Confidence
High
EPSS
0
Percentile
9.0%
Improper Control of Generation of Code (‘Code Injection’) vulnerability in AlgolPlus Advanced Order Export For WooCommerce allows Code Injection.This issue affects Advanced Order Export For WooCommerce: from n/a through 3.4.4.
Related
cvelist
cvelist
wpvulndb
wpvulndb
vulnrichment
vulnrichment
cve
cve
CVE-2024-31266
2024-04-25 09:15:07
wordfence
wordfence
CVSS3
9.1
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:H/A:H
AI Score
9.4
Confidence
High
EPSS
0
Percentile
9.0%
Related for NVD:CVE-2024-31266