Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8
CVE-2022-3536
- EPSS 0.11%
- Veröffentlicht 07.11.2022 10:15:12
- Zuletzt bearbeitet 01.05.2025 20:15:33
The Role Based Pricing for WooCommerce WordPress plugin before 1.6.3 does not have authorisation and proper CSRF checks, as well as does not validate path given via user input, allowing any authenticated users like subscriber to perform PHAR deserial...
8.8
CVE-2022-3537
- EPSS 0.18%
- Veröffentlicht 07.11.2022 10:15:12
- Zuletzt bearbeitet 01.05.2025 20:15:34
The Role Based Pricing for WooCommerce WordPress plugin before 1.6.2 does not have authorisation and proper CSRF checks, and does not validate files to be uploaded, allowing any authenticated users like subscriber to upload arbitrary files, such as P...
1