WordPress Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shop plugin <= 1.7.6 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Trương Hữu Phúc truonghuuphuc in WordPress Plugin Bitcoin / AltCoin Payment Gateway for WooCommerce versions = 1.7.6...

CVE-2022-4118

The Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shop WordPress plugin through 1.7.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by authenticated users...

Sql injection

The Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shop WordPress plugin through 1.7.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by authenticated users...

CVE-2022-4118

CVE-2022-4118 affects the Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor (WordPress) up to version 1.7.1. The vulnerability is a SQL injection in a parameter used in a SQL statement due to improper sanitization/escaping. This can be exploited by authenticated users. Affected soft...

PT-2023-13962 · WordPress · Bitcoin / Altcoin Payment Gateway For Woocommerce & Multivendor Store

Name of the Vulnerable Software and Affected Versions: Bitcoin / AltCoin Payment Gateway for WooCommerce & Multivendor store / shop WordPress plugin versions 1.7.1 and earlier Description: The issue is related to a SQL injection problem. It occurs because a parameter is not properly sanitized and...