CVE-2024-0399
Published Apr 15, 2024
Last updated 7 months ago
Overview
- Description
- The WooCommerce Customers Manager WordPress plugin before 29.7 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to an SQL injection exploitable by Subscriber+ role.
- Source
- contact@wpscan.com
- NVD status
- Awaiting Analysis
Social media
- Hype score
- Not currently trending