Vulnerabilities > Thedotstore

DATE CVE VULNERABILITY TITLE RISK
2023-01-16 CVE-2022-4547 SQL Injection vulnerability in Thedotstore Conditional Payment Methods for Woocommerce
The Conditional Payment Methods for WooCommerce WordPress plugin through 1.0 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by [high privilege users such as admin|users with a role as low as admin.
network
low complexity
thedotstore CWE-89
7.2