Vulners
Lucene search
CVE-2024-2879
🗓️ 03 Apr 2024 03:24:41Reported by WordfenceType 
cve🔗 web.nvd.nist.gov📰️ 3 Media mentions👁 120 Views🌐 WEB
| Reporter | Title | Published | Views | Family All 18 |
|---|---|---|---|---|
 | Exploit for SQL Injection in Kreaturamedia Layerslider | 8 Apr 202418:50 | – | githubexploit |
 | CVE-2024-2879 | 3 Apr 202407:17 | – | circl |
 | WordPress Plugin LayerSlider SQL注入漏洞 | 3 Apr 202400:00 | – | cnnvd |
 | CVE-2024-2879 | 3 Apr 202403:24 | – | cvelist |
 | WordPress Plugin LayerSlider 7.9.11-7.10.0 - SQL Injection | 4 Jun 202603:48 | – | nuclei |
 | CVE-2024-2879 | 3 Apr 202404:15 | – | nvd |
 | WordPress LayerSlider plugin 7.9.11-7.10.0 - Unauth. SQL Injection vulnerability | 2 Apr 202415:53 | – | patchstack |
| WordPress LayerSlider Plugin 7.9.11 - 7.10.0 is vulnerable to SQL Injection | 2 Apr 202400:00 | – | patchstack |
 | PT-2024-3163 · WordPress · Layerslider | 2 Apr 202400:00 | – | ptsecurity |
 | WordPress LayerSlider Plugin: SQL Injection Vulnerability | 22 Apr 202414:00 | – | qualysblog |
10
Node
[
{
"vendor": "LayerSlider",
"product": "LayerSlider",
"versions": [
{
"version": "7.9.11",
"status": "affected",
"lessThanOrEqual": "7.10.0",
"versionType": "semver"
}
],
"defaultStatus": "unaffected"
}
]| Source | Link |
|---|---|
| wordfence | www.wordfence.com/threat-intel/vulnerabilities/id/3fddf96e-029c-4753-ba82-043ca64b78d3 |
| layerslider | www.layerslider.com/release-log/ |
| Parameter | Position | Path | Description | CWE |
|---|---|---|---|---|
| action | query param | wp-admin/admin-ajax.php | Unauthenticated SQL Injection via ls_get_popup_markup in LayerSlider versions 7.9.11–7.10.0 | CWE-89 |
| id[where] | query param | wp-admin/admin-ajax.php | Unauthenticated SQL Injection via ls_get_popup_markup in LayerSlider versions 7.9.11–7.10.0 | CWE-89 |
Data
Build on a solid foundation with Vulners data
We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data
Api
Power your application with Vulners API
The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access
App
Assess and manage vulnerabilities with Vulners tools
Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation
17 Mar 2025 17:03Current
8.1High risk
Vulners AI Score8.1
CVSS 3.17.5 - 9.8
EPSS0.93671
SSVC