Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Ultimate WooCommerce Gift Cards 3.0.2 is affected by a file upload vulnerability in the Custom GiftCard Template that can remotely execute arbitrary code. Once it contains the function "Custom Gift Card Template", the function of uploading a custom image is used, changing the name of the image extension to PHP and executing PHP code on the server.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Automattic WooCommerce Gift Cards 代码问题漏洞
Vulnerability Description
Automattic WooCommerce是美国Automattic公司的一套基于WordPress的开源电子商务平台。 Automattic Ultimate WooCommerce Gift Cards 3.0.2 存在安全漏洞,该漏洞受到自定义礼品卡模板文件上传漏洞的影响,可以远程执行任意代码。一旦包含“定制礼品卡模板”功能,就使用上传自定义图像的功能,将图像扩展名改为PHP,并在服务器上执行PHP代码。
CVSS Information
N/A
Vulnerability Type
N/A