Lucene search
HistoryMay 27, 2024 - 6:15 a.m.
CVE-2024-4533
kkprogressbar2 wordpress plugin
sql injection
admin users
nvd
cve-2024-4533
The KKProgressbar2 Free WordPress plugin through 1.1.4.2 does not sanitize and escape a parameter before using it in a SQL statement, allowing admin users to perform SQL injection attacks
Affected configurations
Node
free_php_scriptsfree_image_hostingRange≤1.1.4.2
CNA Affected
[
{
"vendor": "Unknown",
"product": "KKProgressbar2 Free ",
"versions": [
{
"status": "affected",
"versionType": "semver",
"version": "0",
"lessThanOrEqual": "1.1.4.2"
}
],
"defaultStatus": "affected"
}
]Related
cvelist
cvelist
CVE-2024-4533 KKProgressbar2 Free <= 1.1.4.2 - Admin+ SQL Injection
2024-05-27 06:00:02
vulnrichment
vulnrichment
CVE-2024-4533 KKProgressbar2 Free <= 1.1.4.2 - Admin+ SQL Injection
2024-05-27 06:00:02
wpvulndb
wpvulndb
KKProgressbar2 Free <= 1.1.4.2 - Admin+ SQL Injection
2024-05-06 00:00:00
wpexploit
wpexploit
KKProgressbar2 Free <= 1.1.4.2 - Admin+ SQL Injection
2024-05-06 00:00:00
nvd
nvd
CVE-2024-4533
2024-05-27 06:15:10
wordfence
wordfence