Skip to main content

Ni Purchase Order Po For Woocommerce

1 CVEs product

Monthly

CVE-2023-5957 HIGH POC This Week

The Ni Purchase Order(PO) For WooCommerce WordPress plugin through 1.2.1 does not validate logo and signature image files uploaded in the settings, allowing high privileged user to upload arbitrary. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload WordPress Ni Purchase Order Po For Woocommerce
NVD WPScan
CVSS 3.1
7.2
EPSS
0.6%
EPSS 1% CVSS 7.2
HIGH POC This Week

The Ni Purchase Order(PO) For WooCommerce WordPress plugin through 1.2.1 does not validate logo and signature image files uploaded in the settings, allowing high privileged user to upload arbitrary. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

File Upload WordPress Ni Purchase Order Po For Woocommerce
NVD WPScan

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy