3 matches found
CVE-2022-3490
The CVE-2022-3490 entry concerns the WordPress WooCommerce plugin “Checkout Field Editor (Checkout Manager)” and affects versions prior to 1.8.0. The authenticated vulnerability arises from unserializing user input provided via the plugin settings, which an admin/high-privilege user can abuse to ...
CVE-2022-3490 Checkout Field Editor for WooCommerce < 1.8.0 - Admin+ PHP Object Injection
The Checkout Field Editor Checkout Manager for WooCommerce WordPress plugin before 1.8.0 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present...
CVE-2022-3490 Checkout Field Editor for WooCommerce < 1.8.0 - Admin+ PHP Object Injection
The Checkout Field Editor Checkout Manager for WooCommerce WordPress plugin before 1.8.0 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present...