1. CVE-Search
  2. CVE-2022-1020
ID CVE-2022-1020
Summary The Product Table for WooCommerce (wooproducttable) WordPress plugin before 3.1.2 does not have authorisation and CSRF checks in the wpt_admin_update_notice_option AJAX action (available to both unauthenticated and authenticated users), as well as does not validate the callback parameter, allowing unauthenticated attackers to call arbitrary functions with either none or one user controlled argument
References
Vulnerable Configurations
  • cpe:2.3:a:codeastrology:woo_product_table:-:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:-:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:1.1:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:1.1:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:1.2:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:1.2:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:1.3:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:1.3:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:1.4:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:1.4:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:1.5:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:1.5:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:1.6:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:1.6:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:1.6.0:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:1.6.0:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:1.7:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:1.7:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:1.8:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:1.8:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:1.9:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:1.9:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.0:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.0:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.1:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.1:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.2:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.2:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.3:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.3:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.4:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.4:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.6.1:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.6.1:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.6.1.2:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.6.1.2:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.6.1.3:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.6.1.3:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.6.1.4:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.6.1.4:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.6.1.5:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.6.1.5:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.6.1.6:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.6.1.6:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.7.0:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.7.0:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.7.1:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.7.1:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.7.2:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.7.2:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.7.4:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.7.4:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.7.5:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.7.5:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.7.6:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.7.6:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.7.7:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.7.7:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.7.8:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.7.8:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.7.9:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.7.9:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.8.0:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.8.0:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.8.2:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.8.2:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.8.3:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.8.3:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.8.4:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.8.4:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.8.5:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.8.5:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.8.6:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.8.6:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.8.7:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.8.7:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.8.8:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.8.8:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.9.1:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.9.1:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.9.2:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.9.2:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.9.3:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.9.3:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.9.4:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.9.4:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.9.5:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.9.5:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.9.6:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.9.6:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.9.7:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.9.7:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:2.9.8:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:2.9.8:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:3.0.0:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:3.0.0:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:3.0.1:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:3.0.1:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:3.0.2:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:3.0.2:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:3.0.3:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:3.0.3:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:3.0.4:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:3.0.4:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:3.0.5:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:3.0.5:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:3.0.6:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:3.0.6:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:3.0.7:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:3.0.7:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:3.0.8:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:3.0.8:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:3.0.9:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:3.0.9:*:*:*:*:wordpress:*:*
  • cpe:2.3:a:codeastrology:woo_product_table:3.1.1:*:*:*:*:wordpress:*:*
    cpe:2.3:a:codeastrology:woo_product_table:3.1.1:*:*:*:*:wordpress:*:*
CVSS
Base: 7.5 (as of 10-05-2022 - 17:01)
Impact:
Exploitability:
CWE CWE-862
CAPEC
Access
VectorComplexityAuthentication
NETWORK LOW NONE
Impact
ConfidentialityIntegrityAvailability
PARTIAL PARTIAL PARTIAL
cvss-vector via4 AV:N/AC:L/Au:N/C:P/I:P/A:P
Last major update 10-05-2022 - 17:01
Published 18-04-2022 - 18:15
Last modified 10-05-2022 - 17:01
Back to Top