Vulnerability CVE-2022-4328


Published: 2023-03-06

Description:
The WooCommerce Checkout Field Manager WordPress plugin before 18.0 does not validate files to be uploaded, which could allow unauthenticated attackers to upload arbitrary files such as PHP on the server

Type:

CWE-434

(Unrestricted Upload of File with Dangerous Type)

 References:
https://wpscan.com/vulnerability/4dc72cd2-81d7-4a66-86bd-c9cfaf690eed

Copyright 2026, cxsecurity.com

 

Back to Top