Thedotstore: Security Vulnerabilities
The Conditional Payment Methods for WooCommerce WordPress plugin through 1.0 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by [high privilege users such as admin|users with a role as low as admin.
CVSS Score
7.2
EPSS Score
0.003
Published
2023-01-16