Arbitrary Code Execution vulnerability in Api2Cart Bridge Connector plugin <= 1.1.0 on WordPress.
References
Link | Resource |
---|---|
https://patchstack.com/database/vulnerability/api2cart-bridge-connector/wordpress-api2cart-bridge-connector-plugin-1-1-0-arbitrary-code-execution-vulnerability?_s_id=cve | Third Party Advisory |
https://wordpress.org/plugins/api2cart-bridge-connector/#developers | Release Notes Third Party Advisory |
https://patchstack.com/database/vulnerability/api2cart-bridge-connector/wordpress-api2cart-bridge-connector-plugin-1-1-0-arbitrary-code-execution-vulnerability?_s_id=cve | Third Party Advisory |
https://wordpress.org/plugins/api2cart-bridge-connector/#developers | Release Notes Third Party Advisory |
Configurations
Configuration 1 (hide)
|
History
21 Nov 2024, 07:25
Type | Values Removed | Values Added |
---|---|---|
References | () https://patchstack.com/database/vulnerability/api2cart-bridge-connector/wordpress-api2cart-bridge-connector-plugin-1-1-0-arbitrary-code-execution-vulnerability?_s_id=cve - Third Party Advisory | |
References | () https://wordpress.org/plugins/api2cart-bridge-connector/#developers - Release Notes, Third Party Advisory | |
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 10.0 |
Information
Published : 2022-11-18 23:15
Updated : 2024-11-21 07:25
NVD link : CVE-2022-42497
Mitre link : CVE-2022-42497
CVE.ORG link : CVE-2022-42497
JSON object : View
Products Affected
api2cart
- api2cart_bridge_connector
CWE
CWE-89
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')