The Sync WooCommerce Product feed to Google Shopping WordPress plugin up to and including 1.2.4 uses the 'feed_id' POST parameter which is not properly sanitized for use in a SQL statement, leading to a SQL injection vulnerability in the admin dashboard
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dpl sync woocommerce product feed to google shopping |