CVE-2022-3536

Published: Nov 7, 2022Modified: May 1, 2025

8.8

Vector

CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Exploitability: 2.8 / Impact: 5.9

Source: NVD

Description

The Role Based Pricing for WooCommerce WordPress plugin before 1.6.3 does not have authorisation and proper CSRF checks, as well as does not validate path given via user input, allowing any authenticated users like subscriber to perform PHAR deserialization attacks when they can upload a file, and a suitable gadget chain is present on the blog

Affected (1)

Products: Addify: Role Based Pricing For Woocommerce

1 product

Role Based Pricing For Woocommerce

Configuration A

1 vulnerable

Vulnerable Software	Affected Versions
Addify Role Based Pricing For Woocommerce	Before 1.6.3

Related CWEs

Cross-Site Request Forgery (CSRF)

The web application does not, or can not, sufficiently verify whether a well-formed, valid, consistent request was intentionally provided by the user who submitted the request.

Deserialization of Untrusted Data

The product deserializes untrusted data without sufficiently verifying that the resulting data will be valid.

References (2)

https://wpscan.com/vulnerability/6af63aab-b7a6-4ef6-8604-4b4b99467a34

Source: contact@wpscan.com

ExploitThird Party Advisory

https://wpscan.com/vulnerability/6af63aab-b7a6-4ef6-8604-4b4b99467a34

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitThird Party Advisory

Timeline

No history available yet.