CVE-2022-4328

The WooCommerce Checkout Field Manager WordPress plugin before 18.0 does not validate files to be uploaded, which could allow unauthenticated attackers to upload arbitrary files such as PHP on the server
Configurations

Configuration 1 (hide)

cpe:2.3:a:najeebmedia:woocommerce_checkout_field_manager:*:*:*:*:*:wordpress:*:*

History

21 Nov 2024, 07:35

Type Values Removed Values Added
References () https://wpscan.com/vulnerability/4dc72cd2-81d7-4a66-86bd-c9cfaf690eed - Exploit, Third Party Advisory () https://wpscan.com/vulnerability/4dc72cd2-81d7-4a66-86bd-c9cfaf690eed - Exploit, Third Party Advisory

07 Nov 2023, 03:57

Type Values Removed Values Added
CWE CWE-434

Information

Published : 2023-03-06 14:15

Updated : 2024-11-21 07:35


NVD link : CVE-2022-4328

Mitre link : CVE-2022-4328

CVE.ORG link : CVE-2022-4328


JSON object : View

Products Affected

najeebmedia

  • woocommerce_checkout_field_manager
CWE

No CWE.