The Sync WooCommerce Product feed to Google Shopping WordPress plugin through 1.2.4 uses the 'feed_id' POST parameter which is not properly sanitized for use in a SQL statement, leading to a SQL injection vulnerability in the admin dashboard
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: WPScan
Published: 2022-03-28T17:21:55
Updated: 2024-08-03T19:56:09.944Z
Reserved: 2021-01-14T00:00:00
Link: CVE-2021-25068
Vulnrichment
No data.
NVD
Status : Analyzed
Published: 2022-03-28T18:15:08.577
Modified: 2022-04-04T19:04:56.660
Link: CVE-2021-25068
Redhat
No data.