CVE-2024-50416

Deserialization of Untrusted Data vulnerability in WPClever WPC Shop as a Customer for WooCommerce allows Object Injection.This issue affects WPC Shop as a Customer for WooCommerce: from n/a through 1.2.6.
Configurations

Configuration 1 (hide)

cpe:2.3:a:wpclever:wpc_shop_as_a_customer_for_woocommerce:*:*:*:*:*:wordpress:*:*

History

29 Oct 2024, 16:02

Type Values Removed Values Added
CPE cpe:2.3:a:wpclever:wpc_shop_as_a_customer_for_woocommerce:*:*:*:*:*:wordpress:*:*
First Time Wpclever
Wpclever wpc Shop As A Customer For Woocommerce
Summary
  • (es) La vulnerabilidad de deserialización de datos no confiables en WPClever WPC Shop as a Customer for WooCommerce permite la inyección de objetos. Este problema afecta a WPC Shop como cliente de WooCommerce: desde n/a hasta 1.2.6.
References () https://patchstack.com/database/vulnerability/wpc-shop-as-customer/wordpress-wpc-shop-as-a-customer-for-woocommerce-plugin-1-2-6-php-object-injection-vulnerability?_s_id=cve - () https://patchstack.com/database/vulnerability/wpc-shop-as-customer/wordpress-wpc-shop-as-a-customer-for-woocommerce-plugin-1-2-6-php-object-injection-vulnerability?_s_id=cve - Third Party Advisory

28 Oct 2024, 12:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-10-28 12:15

Updated : 2024-10-29 16:02


NVD link : CVE-2024-50416

Mitre link : CVE-2024-50416

CVE.ORG link : CVE-2024-50416


JSON object : View

Products Affected

wpclever

  • wpc_shop_as_a_customer_for_woocommerce
CWE
CWE-502

Deserialization of Untrusted Data