Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8
CVE-2022-3536
- EPSS 0.11%
- Published 07.11.2022 10:15:12
- Last modified 01.05.2025 20:15:33
The Role Based Pricing for WooCommerce WordPress plugin before 1.6.3 does not have authorisation and proper CSRF checks, as well as does not validate path given via user input, allowing any authenticated users like subscriber to perform PHAR deserial...
8.8
CVE-2022-3537
- EPSS 0.18%
- Published 07.11.2022 10:15:12
- Last modified 01.05.2025 20:15:34
The Role Based Pricing for WooCommerce WordPress plugin before 1.6.2 does not have authorisation and proper CSRF checks, and does not validate files to be uploaded, allowing any authenticated users like subscriber to upload arbitrary files, such as P...
1