Lucene search
PatchstackCVE-2024-35630HistoryJun 03, 2024 - 11:15 a.m.
CVE-2024-35630
2024-06-0311:15:11
CWE-89
Patchstack
web.nvd.nist.gov
21
cve-2024-35630
nvd
vulnerability
documents
CVSS3
7.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L
AI Score
8
Confidence
Low
EPSS
0
Percentile
9.0%
Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in LJ Apps WP TripAdvisor Review Slider allows Blind SQL Injection.This issue affects WP TripAdvisor Review Slider: from n/a through 12.6.
Affected configurations
Node
lj_appswp_tripadvisor_review_sliderRange≤12.6wordpress
| Vendor | Product | Version | CPE |
|---|---|---|---|
| lj_apps | wp_tripadvisor_review_slider | * | cpe:2.3:a:lj_apps:wp_tripadvisor_review_slider:*:*:*:*:*:wordpress:*:* |
CNA Affected
[
{
"collectionURL": "https://wordpress.org/plugins",
"defaultStatus": "unaffected",
"packageName": "wp-tripadvisor-review-slider",
"product": "WP TripAdvisor Review Slider",
"vendor": "LJ Apps",
"versions": [
{
"changes": [
{
"at": "12.7",
"status": "unaffected"
}
],
"lessThanOrEqual": "12.6",
"status": "affected",
"version": "n/a",
"versionType": "custom"
}
]
}
]Related
nvd
nvd
CVE-2024-35630
2024-06-03 11:15:11
cvelist
cvelist
wpvulndb
wpvulndb
vulnrichment
vulnrichment
wordfence
wordfence
CVSS3
7.6
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
HIGH
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
HIGH
Integrity Impact
NONE
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:C/C:H/I:N/A:L
AI Score
8
Confidence
Low
EPSS
0
Percentile
9.0%
Related for CVE-2024-35630