CVE-2025-22639 - CERT CVE

  1. CVE-2025-22639

ID CVE-2025-22639
Sažetak Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound Distance Rate Shipping for WooCommerce allows Blind SQL Injection. This issue affects Distance Rate Shipping for WooCommerce: from n/a through 1.3.4.
Reference
CVSS
Base: 8.5
Impact: 4.7
Exploitability:3.1
Pristup
VektorSloženostAutentikacija
NETWORK LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
HIGH NONE LOW
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L
Zadnje važnije ažuriranje 18-02-2025 - 20:15
Objavljeno 18-02-2025 - 20:15