Security Advisory

WordPress TI WooCommerce Wishlist Plugin Security Update Advisory (CVE-2022-0412)

  • Mar 20 2024

Overview

 

An update has been made available to address a vulnerability in the WordPress TI WooCommerce Wishlist plugin. users of affected versions are advised to update to the latest version.

 

Affected Products

 

TI WooCommerce versions prior to 1.40.1

 

Resolved Vulnerabilities

 

Unauthenticated blind SQL injection vulnerability in WordPress TI WooCommerce Wishlist plugin (CVE-2022-0412)

 

Vulnerability Patches

 

vulnerability Patches were made available in the April 12, 2022 update. Please follow the instructions on the Referenced Sites to update to the latest Vulnerability Patches version.

TI WooCommerce version 1.40.1

 

Referenced Sites

 

[1] TI WooCommerce Wishlist < 1.40.1 – Unauthenticated Blind SQL Injection

https://wpscan.com/vulnerability/e984ba11-abeb-4ed4-9dad-0bfd539a9682/

[2] Changeset 2668899

https://plugins.trac.wordpress.org/changeset/2668899/

Tags:

Previous Post

Next Post