{"id":27883,"date":"2025-04-20T12:23:50","date_gmt":"2025-04-20T12:23:50","guid":{"rendered":""},"modified":"2025-07-08T23:21:47","modified_gmt":"2025-07-09T05:21:47","slug":"cve-2025-32119-blind-sql-injection-vulnerability-in-cardgate-payments-for-woocommerce-plugin","status":"publish","type":"post","link":"https:\/\/www.ameeba.com\/blog\/cve-2025-32119-blind-sql-injection-vulnerability-in-cardgate-payments-for-woocommerce-plugin\/","title":{"rendered":"CVE-2025-32119: Blind SQL Injection Vulnerability in CardGate Payments for WooCommerce Plugin<\/strong>"},"content":{"rendered":"

Overview<\/strong><\/p>\n

CVE-2025-32119 is a significant cybersecurity threat that jeopardizes the safety of e-commerce platforms using the WooCommerce plugin by CardGate Payments. It specifically targets versions from the unspecified initial release up to version 3.2.1. This vulnerability allows for the exploitation of the software through SQL<\/a> Injection, which may result in a severe data breach or a complete system compromise.
\nThe severity of this issue<\/a> cannot be understated. As e-commerce continues to grow, the security of online transactions is of utmost importance. With cybercriminals becoming more sophisticated, loopholes such as CVE-2025-32119 pose a considerable risk to the integrity of online businesses, potentially leading<\/a> to significant financial losses and damage to the company’s reputation.<\/p>\n

Vulnerability Summary<\/strong><\/p>\n

CVE ID: CVE-2025-32119
\nSeverity: High (CVSS: 8.2)
\nAttack Vector: Network
\nPrivileges Required: None
\nUser Interaction: None
\nImpact: Potential system<\/a> compromise or data leakage<\/p>\n

Affected Products<\/strong><\/p>

\r\n

\r\n \r\n \"Ameeba\r\n <\/a>\r\n A new way to communicate\r\n <\/h2>\r\n\r\n

\r\n Ameeba Chat is built on encrypted identity, not personal profiles.\r\n <\/p>\r\n\r\n

\r\n Message, call, share files, and coordinate with identities kept separate.\r\n <\/p>\r\n\r\n