CVE-2022-0478
More information about this CVE will likely be available in a few days.
Description
The Event Manager and Tickets Selling for WooCommerce WordPress plugin before 3.5.8 does not validate and escape the post_author_gutenberg parameter before using it in a SQL statement when creating/editing events, which could allow users with a role as low as contributor to perform SQL Injection attacks
Related CPE's
Could not find any relations
References
CvssV3 impact
Could not find any metrics
CvssV2 impact
Could not find any metrics