Vulnerability CVE-2022-3490
Published: 2022-11-28

Description:
The Checkout Field Editor (Checkout Manager) for WooCommerce WordPress plugin before 1.8.0 unserializes user input provided via the settings, which could allow high privilege users such as admin to perform PHP Object Injection when a suitable gadget is present

Type:

CWE-502

 (Deserialization of Untrusted Data)

 References:
https://wpscan.com/vulnerability/0c9f22e0-1d46-4957-9ba5-5cca78861136
Copyright 2024, cxsecurity.com

 

Back to Top