Lucene search
K

9 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 10:24 p.m.7 views

CVE-2022-45359

Unauth. Arbitrary File Upload vulnerability in YITH WooCommerce Gift Cards premium plugin = 3.19.0 on WordPress...

9.8CVSS6.7AI score0.13514EPSS
Exploits2References1
OpenVAS
OpenVAS
added 2023/08/30 12:0 a.m.17 views

WordPress YITH WooCommerce Gift Cards Premium Plugin < 3.20.0 Arbitrary File Upload Vulnerability

The WordPress plugin SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/a:yithemes:yithwoocommercegiftcards"; ifdescription...

9.8CVSS6.9AI score0.13514EPSS
Exploits2References1
hivepro
hivepro
added 2022/12/30 1:36 p.m.35 views

WordPress plugin has been exploited in the wild to mount backdoors

Threat Level Vulnerability Report For a detailed threat advisory, download the pdf file here Summary Malicious actors are actively exploiting a critical vulnerability in the YITH WooCommerce Gift Cards Premium WordPress plugin in order to plant backdoors on e-Commerce sites. The security flaw...

2.3AI score0.13514EPSS
Exploits2
0day.today
0day.today
added 2022/12/24 12:0 a.m.492 views

WordPress Yith WooCommerce Gift Cards Premium 3.19.0 Shell Upload Vulnerability

Description: Unauthenticated Arbitrary File Upload Affected Plugin: Yith WooCommerce Gift Cards Premium Plugin Slug: yith-woocommerce-gift-cards-premium Affected Versions: = 3.19.0 CVE ID: CVE-2022-45359 CVSS Score: 9.8 Critical CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N...

9.8CVSS0.4AI score0.13514EPSS
Exploits2
Packet Storm
Packet Storm
added 2022/12/23 12:0 a.m.745 views

WordPress Yith WooCommerce Gift Cards Premium 3.19.0 Shell Upload

Description: Unauthenticated Arbitrary File Upload Affected Plugin: Yith WooCommerce Gift Cards Premium Plugin Slug: yith-woocommerce-gift-cards-premium Affected Versions: = 3.19.0 CVE ID: CVE-2022-45359 CVSS Score: 9.8 Critical CVSS Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:N/I:L/A:N...

9.8CVSS0.3AI score0.13514EPSS
Exploits2
Circl
Circl
added 2022/12/07 12:41 a.m.5 views

CVE-2022-45359

creationtimestamp| type| source ---|---|--- 2022-12-07 00:41:00+00:00| seen| https://t.me/cibsecurity/54101 2022-12-26 17:22:22+00:00| exploited| https://t.me/truesecator/3878 2022-12-27 09:24:08+00:00| exploited| https://t.me/SecLabNews/13177 2023-02-01 02:23:19+00:00| published-proof-of-concept...

9.8CVSS7.3AI score0.13514EPSS
Exploits2References6
NVD
NVD
added 2022/12/06 9:15 p.m.33 views

CVE-2022-45359

Unauth. Arbitrary File Upload vulnerability in YITH WooCommerce Gift Cards premium plugin = 3.19.0 on WordPress...

9.8CVSS0.13514EPSS
Exploits2References1
CVE
CVE
added 2022/12/06 8:36 p.m.222 views

CVE-2022-45359

CVE-2022-45359 affects the WordPress YITH WooCommerce Gift Cards Premium plugin up to version 3.19.0. The vulnerability is an unauthenticated Arbitrary File Upload via the import_actions_from_settings_panel function that runs on admin_init, allowing attackers to upload files (e.g., web shells) wi...

9.8CVSS9.4AI score0.13514EPSS
In wildExploits2References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2022/12/06 12:0 a.m.168 views

CVE-2022-45359

Unauth. Arbitrary File Upload vulnerability in YITH WooCommerce Gift Cards premium plugin = 3.19.0 on WordPress. Recent assessments: Assessed Attacker Value: 0 Assessed Attacker Value: 0Assessed Attacker Value: 0...

9.8CVSS9.4AI score0.13514EPSS
In wildExploits2References2
Rows per page
Query Builder