← Back

CVE-2022-40194

nvd nist
Published: Sep 23, 2022Modified: Jun 17, 2026

JSON object

Loading...
7.5
Vector
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
Exploitability: 3.9 / Impact: 3.6
Source: NVD

Description

Unauthenticated Sensitive Information Disclosure vulnerability in Customer Reviews for WooCommerce plugin <= 5.3.5 at WordPress

Affected (1)

Cusrev
1 product
Customer Reviews For Woocommerce
Configuration A
1 vulnerable
Vulnerable SoftwareAffected Versions
Customer Reviews For Woocommerce
Up to 5.3.5

Related CWEs

CWE-200
Exposure of Sensitive Information to an Unauthorized Actor
The product exposes sensitive information to an actor that is not explicitly authorized to have access to that information.

References (4)

Source: audit@patchstack.com
Broken Link
Source: audit@patchstack.com
Product
Source: af854a3a-2127-422b-91ae-364da2661108
Broken Link
Source: af854a3a-2127-422b-91ae-364da2661108
Product

Timeline

No history available yet.