Lucene search
K

6 matches found

Nuclei
Nuclei
added yesterday16 views

Multiple Shipping Address Woocommerce < 2.0 - SQL Injection

The Multiple Shipping Address Woocommerce plugin before 2.0 does not properly sanitize and escape numerous parameters before using them in SQL statements via some AJAX actions available to unauthenticated users, leading to unauthenticated SQL injections. id: CVE-2022-0783 info: name: Multiple...

9.8CVSS7.2AI score0.07866EPSS
Exploits2References2
RedhatCVE
RedhatCVE
added 2025/05/22 10:2 p.m.7 views

CVE-2022-0783

The Multiple Shipping Address Woocommerce WordPress plugin before 2.0 does not properly sanitise and escape numerous parameters before using them in SQL statements via some AJAX actions available to unauthenticated users, leading to unauthenticated SQL injections...

9.8CVSS7.3AI score0.07866EPSS
Exploits2References1
Circl
Circl
added 2022/05/02 8:27 p.m.14 views

CVE-2022-0783

creationtimestamp| type| source ---|---|--- 2022-05-02 20:27:59+00:00| seen| https://t.me/cibsecurity/41734 2025-05-28 08:04:58+00:00| confirmed| https://github.com/projectdiscovery/nuclei-templates/tree/main/http/cves/2022/CVE-2022-0783.yaml...

9.8CVSS8.7AI score0.07866EPSS
Exploits2References2
OSV
OSV
added 2022/05/02 4:15 p.m.5 views

CVE-2022-0783

The Multiple Shipping Address Woocommerce WordPress plugin before 2.0 does not properly sanitise and escape numerous parameters before using them in SQL statements via some AJAX actions available to unauthenticated users, leading to unauthenticated SQL injections...

9.8CVSS5.8AI score0.07866EPSS
Exploits2References1
CVE
CVE
added 2022/05/02 4:5 p.m.100 views

CVE-2022-0783

CVE-2022-0783 affects the WordPress plugin "Multiple Shipping Address Woocommerce" (pre-2.0). The issue is improper sanitization/escaping of numerous parameters in SQL statements executed by certain AJAX actions accessible to unauthenticated users, leading to unauthenticated SQL injections. Impac...

9.8CVSS9.8AI score0.07866EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2022/05/02 4:5 p.m.28 views

CVE-2022-0783 Multiple Shipping Address Woocommerce < 2.0 - Unauthenticated SQLi

The Multiple Shipping Address Woocommerce WordPress plugin before 2.0 does not properly sanitise and escape numerous parameters before using them in SQL statements via some AJAX actions available to unauthenticated users, leading to unauthenticated SQL injections...

9.9AI score0.07866EPSS
Exploits2References1
Rows per page
Query Builder