CVE-2025-31089 - CERT CVE

  1. CVE-2025-31089

ID CVE-2025-31089
Sažetak Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Fahad Mahmood Order Splitter for WooCommerce allows SQL Injection. This issue affects Order Splitter for WooCommerce: from n/a through 5.3.0.
Reference
CVSS
Base: 8.5
Impact: 4.7
Exploitability:3.1
Pristup
VektorSloženostAutentikacija
NETWORK LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
HIGH NONE LOW
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L
Zadnje važnije ažuriranje 01-04-2025 - 21:15
Objavljeno 01-04-2025 - 21:15