Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

  1. Reconshell
  2. Vulnerabilities (CVE)
Filtered by vendor Templateinvaders Subscribe
Filtered by product Ti Woocommerce Wishlist
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-0412 1 Templateinvaders 1 Ti Woocommerce Wishlist 2022-03-08 7.5 HIGH 9.8 CRITICAL
The TI WooCommerce Wishlist WordPress plugin before 1.40.1, TI WooCommerce Wishlist Pro WordPress plugin before 1.40.1 do not sanitise and escape the item_id parameter before using it in a SQL statement via the wishlist/remove_product REST endpoint, allowing unauthenticated attackers to perform SQL injection attacks