CVE-2025-47544

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in acowebs Dynamic Pricing With Discount Rules for WooCommerce allows Blind SQL Injection. This issue affects Dynamic Pricing With Discount Rules for WooCommerce: from n/a through 4.5.8.
Configurations

Configuration 1 (hide)

cpe:2.3:a:acowebs:dynamic_pricing_with_discount_rules_for_woocommerce:*:*:*:*:*:wordpress:*:*

History

06 Jun 2025, 21:47

Type Values Removed Values Added
CPE cpe:2.3:a:acowebs:dynamic_pricing_with_discount_rules_for_woocommerce:*:*:*:*:*:wordpress:*:*
First Time Acowebs
Acowebs dynamic Pricing With Discount Rules For Woocommerce
References () https://patchstack.com/database/wordpress/plugin/aco-woo-dynamic-pricing/vulnerability/wordpress-dynamic-pricing-with-discount-rules-for-woocommerce-4-5-8-sql-injection-vulnerability?_s_id=cve - () https://patchstack.com/database/wordpress/plugin/aco-woo-dynamic-pricing/vulnerability/wordpress-dynamic-pricing-with-discount-rules-for-woocommerce-4-5-8-sql-injection-vulnerability?_s_id=cve - Third Party Advisory

08 May 2025, 14:39

Type Values Removed Values Added
Summary
  • (es) Vulnerabilidad de neutralización incorrecta de elementos especiales utilizados en un comando SQL ('Inyección SQL') en acowebs Dynamic Pricing With Discount Rules for WooCommerce permite la inyección SQL ciega. Este problema afecta a la aplicación de precios dinámicos con reglas de descuento para WooCommerce desde n/d hasta la versión 4.5.8.

07 May 2025, 15:16

Type Values Removed Values Added
New CVE

Information

Published : 2025-05-07 15:16

Updated : 2025-06-06 21:47


NVD link : CVE-2025-47544

Mitre link : CVE-2025-47544

CVE.ORG link : CVE-2025-47544


JSON object : View

Products Affected

acowebs

  • dynamic_pricing_with_discount_rules_for_woocommerce
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')