N-Media Bulk Product Sync vulnerabilities
2 known vulnerabilities affecting n-media/bulk_product_sync.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL1MEDIUM1
Vulnerabilities
Page 1 of 1
CVE-2025-31599P2CRITICALCVSS 9.3≤ 8.62025-04-11
CVE-2025-31599 [CRITICAL] CWE-89 CVE-2025-31599: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability i
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in N-Media Bulk Product Sync sync-wc-google allows SQL Injection.This issue affects Bulk Product Sync: from n/a through <= 8.6.
nvd
CVE-2025-31852P4MEDIUMCVSS 4.3≤ 8.62025-04-01
CVE-2025-31852 [MEDIUM] CWE-352 CVE-2025-31852: Cross-Site Request Forgery (CSRF) vulnerability in N-Media Bulk Product Sync sync-wc-google allows C
Cross-Site Request Forgery (CSRF) vulnerability in N-Media Bulk Product Sync sync-wc-google allows Cross Site Request Forgery.This issue affects Bulk Product Sync: from n/a through <= 8.6.
nvd