Lucene search
HistoryApr 07, 2024 - 6:15 p.m.
CVE-2024-31260
sql injection
edwiser bridge
vulnerability
cve-2024-31260
wisdmlabs
7.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L
9.7 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
8.8%
Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in WisdmLabs Edwiser Bridge.This issue affects Edwiser Bridge: from n/a through 3.0.2.
Affected configurations
Node
wisdmlabsedwiser_bridgeRange≤3.0.2
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "edwiser-bridge",
"product": "Edwiser Bridge",
"vendor": "WisdmLabs",
"versions": [
{
"changes": [
{
"at": "3.0.4",
"status": "unaffected"
}
],
"lessThanOrEqual": "3.0.2",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-31260
2024-04-07 18:15:10
wpvulndb
wpvulndb
Edwiser Bridge < 3.0.4 - Authenticated (Administrator+) SQL Injection
2024-04-11 00:00:00
cvelist
cvelist
wordfence
wordfence
7.6 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L
9.7 High
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
8.8%
Related for CVE-2024-31260