3 matches found
CVE-2022-4547
The Conditional Payment Methods for WooCommerce WordPress plugin through 1.0 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin|users with a role as low as admin...
CVE-2022-4547 Conditional Payment Methods for WooCommerce <= 1.0 - Admin+ SQLi
The Conditional Payment Methods for WooCommerce WordPress plugin through 1.0 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin|users with a role as low as admin...
CVE-2022-4547
CVE-2022-4547 refers to a SQL injection in the Conditional Payment Methods for WooCommerce WordPress plugin up to version 1.0, caused by improper sanitisation/escaping of a parameter before SQL usage. The vulnerability enables exploitation by high-privilege users (e.g., admin) and is documented w...