- Feb 28, 2023
- 1 min read

[WordPress Zendrop - Global Dropshipping Plugin](versions 1.0.0 and older) Vulnerability

[WordPress Zendrop - Global Dropshipping Plugin](versions 1.0.0 and older) Vulnerability to SQL Injection

Importance (CVSS3.0)

★★★★★★★★★★ 10/ 10 - Critical

Details

A SQL Injection vulnerability was discovered in WordPress Zendrip - Global Dropshipping Plugin.

This vulnerability allows malicious attackers to interact with the databases directly, potentially stealing information and creating new administrator accounts.

This vulnerability hasn't been fixed yet

Solutions

Disable and delete. There’s no patched version available.

Source

CVE-2023-25960

We provide information about critical vulnerabilities of WordPress for people who are using or are considering using Wordpress for their projects.

“[WordPress Zendrop - Global Dropshipping Plugin](versions 1.0.0 and older) Vulnerability to SQL Injection”, by WS Security is licensed under CC BY 4.0.

Enterprise
Server Infrastructure
Management

Posts

[WordPress Zendrop - Global Dropshipping Plugin](versions 1.0.0 and older) Vulnerability

[WordPress Zendrop - Global Dropshipping Plugin](versions 1.0.0 and older) Vulnerability to SQL Injection

Recent Posts

Beyond GTA Inc.

Services

Policies

Beyond GTA Inc.
7030 Woodbine Ave., Markham, ON, L3R 6G2, Canada

Copyright 2021 Beyond GTA Inc.