4 matches found
VulnCheck KEV: CVE-2021-32790
Woocommerce is an open source eCommerce plugin for WordPress. An SQL injection vulnerability impacts all WooCommerce sites running the WooCommerce plugin between version 3.3.0 and 3.3.6. Malicious actors already having admin access, or API keys to the WooCommerce site can exploit vulnerable...
CVE-2021-32790
creationtimestamp| type| source ---|---|--- 2022-01-21 08:03:01+00:00| published-proof-of-concept| https://t.me/hackroomchannel/134 2026-06-23 14:06:18+00:00| exploited| https://vulnerability.circl.lu/known-exploited-vulnerabilities-catalog/a28ba911-9645-4b76-9333-57ea97aac019 2026-06-30...
CVE-2021-32790
CVE-2021-32790 describes an SQL injection in WooCommerce (versions 3.3.0–3.3.6) that affects authenticated users with admin access or API keys via webhook listing endpoints such as /wp-json/wc/v3/webhooks and /wp-json/wc/v2/webhooks. The vulnerability allows read-only SQL queries to be executed t...
WordPress WooCommerce Plugin SQL Injection Vulnerability (Jul 2021) - Version Check
The WordPress plugin Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/or modify it...