CVE-2022-3600
Easy Digital Downloads < 3.1.0.2 - Unauthenticated CSV Injection
The Easy Digital Downloads WordPress plugin before 3.1.0.2 does not validate data when its output in a CSV file, which could lead to CSV injection.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Affected products
Unknown · Easy Digital Downloadspublic PoCs found — 1
cve_referencewpscan.com/vulnerability/16e2d970-19d0-42d1-8fb1-e7cb14ace1d0unverified⚠ Public resources, to assess the exposure of systems you control or are authorized to test. Test only with authorization.
Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →