PT-2022-25229 · WordPress · Advanced Order Export For Woocommerce
István Márton
+1
·
Published
2022-11-08
·
Updated
2024-11-20
·
CVE-2022-40128
CVSS v3.1
6.5
Medium
| Vector | AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N |
Name of the Vulnerable Software and Affected Versions
Advanced Order Export For WooCommerce plugin versions <= 3.3.2
Description
The issue is related to a Cross-Site Request Forgery (CSRF) vulnerability, which can lead to the download of export files. This occurs in the Advanced Order Export For WooCommerce plugin on WordPress.
Recommendations
For Advanced Order Export For WooCommerce plugin versions <= 3.3.2, update to a version higher than 3.3.2 to resolve the issue.
Fix
CSRF
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Advanced Order Export For Woocommerce