Unrated severityNVD Advisory· Published May 9, 2022· Updated Aug 2, 2024

Ubigeo de Peru < 3.6.4 - Unauthenticated SQLi

CVE-2022-0814

Description

The Ubigeo de Perú para Woocommerce WordPress plugin before 3.6.4 does not properly sanitise and escape some parameters before using them in SQL statements via various AJAX actions, some of which are available to unauthenticated users, leading to SQL Injections

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

WordPress/Ubigeo de Perú para Woocommerce plugindescription
WordPress/Ubigeo de Perú para Woocommercellm-create
Range: <3.6.4

Patches

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

wpscan.com/vulnerability/fd84dc08-0079-4fcf-81c3-a61d652e3269mitrex_refsource_MISC

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.007
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000