5 matches found
WordPress HUSKY - Products Filter for WooCommerce Professional Plugin < 1.3.2 PHP Object Injection Vulnerability
The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:pluginus:husky-productsfilterprofessionalforwoocommerce";...
CVE-2022-4489
The HUSKY WordPress plugin before 1.3.2 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present...
CVE-2022-4489 WOOF - Products Filter for WooCommerce < 1.3.2 - Admin+ PHP Object Injection
The HUSKY WordPress plugin before 1.3.2 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present...
CVE-2022-4489
The CVE-2022-4489 entry concerns the WordPress HUSKY (WOOF) plugin for WooCommerce, affected versions
WordPress HUSKY Plugin < 1.3.2 is vulnerable to PHP Object Injection
Software HUSKY Type Plugin Vulnerable versions 1.3.2 Fixed in 1.3.2 OWASP Top 10 A1: Injection Classification PHP Object Injection CVE CVE-2022-4489 Patch priority Low CVSS severity Low 4.4 Developer Claim ownership PSID acfadb3bf3ab Credits thinhnguyen1337 Required privilege Administrator...