[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"all-banners":3,"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0":4,"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU":11,"vulnerability-25853":17,"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU":40},[],["Island",5],{"key":6,"params":7,"result":9},"SkipToContent_34xgpJIRRkpiT6ls6jE4NHf7VpvQCQBEwi69exi4oT0",{"props":8},"{}",{"head":10},{},["Island",12],{"key":13,"params":14,"result":15},"FooterNav_JsYsxvLufb1W12aeknKZ89on0MD0bNDTiB5EYxyxmU",{"props":8},{"head":16},{},{"id":18,"detectable_with":19,"vuln_details":26,"vuln_id":37,"name":38,"published":39,"updated":27},25853,{"tool":20,"engine":23},{"id":21,"name":22},1,"Network Scanner",{"id":24,"name":25},2,"Nuclei",{"id":18,"codename":27,"description":27,"severity":28,"risk_description":29,"public_description":30,"public_recommendation":31,"recommendation":27,"references":32,"cvssv3":35,"epss_score":27,"epss_percentile":27,"cve":27,"in_cisa_catalog":36,"date":27,"software_type":27,"vendor":27,"product":27,"ptt_exploit_capabilities":27},null,"high","The risk exists that an attacker can use the vulnerability identified to perform further attacks on the server.","WordPress WooCommerce \u003C 1.2.7 is susceptible to file download vulnerabilities. The lack of authorization checks in the handle_downloads() function hooked to admin_init() could allow unauthenticated users to download arbitrary files from the blog using a path traversal payload.","We recommend reviewing the purpose of the application or the server and applying patches, if applicable.",[33,34],"https://wpscan.com/vulnerability/15f345e6-fc53-4bac-bc5a-de898181ea74","https://blog.nintechnet.com/high-severity-vulnerability-fixed-in-product-input-fields-for-woocommerce/",8.6,false,"NETSCAN-NUCLEI-VULNERABILITIES-WP-WOOCOMMERCE-FILE-DOWNLOAD","Product Input Fields for WooCommerce \u003C 1.2.7 - Unauthenticated File Download","2024-12-11T00:00:00Z",["Island",41],{"key":42,"params":43,"result":45},"FooterSocial_u16tCafBUeGMoDrdLfTINytP2JB5msc6iB3VDUutAoU",{"props":44},"{\"text-color\":\"gray\"}",{"head":46},{}]