Wclovers CVE - OpenCVE

Filtered by vendor Wclovers Subscribe

ALL

NONE (0.0) LOW (0.1 - 3.9) MEDIUM (4.0 - 6.9) HIGH (7.0 - 8.9) CRITICAL (9.0 - 10.0)

Total 1 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2021-24849	1 Wclovers	1 Frontend Manager For Woocommerce Along With Bookings Subscription Listings Compatible	2021-12-27	7.5 HIGH	9.8 CRITICAL
The wcfm_ajax_controller AJAX action of the WCFM Marketplace WordPress plugin before 3.4.12, available to unauthenticated and authenticated user, does not properly sanitise multiple parameters before using them in SQL statements, leading to SQL injections

Vulnerabilities (CVE)