CVE-2024-7766 Adicon Server <= 1.2 - Admin+ SQL Injection

2024-09-1206:00:04

WPScan

www.cve.org

adicon server

sql injection

vulnerability

admin

wordpress plugin

EPSS

0.001

Percentile

20.0%

JSON

The Adicon Server WordPress plugin through 1.2 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks

CNA Affected

[
  {
    "vendor": "Unknown",
    "product": "Adicon Server",
    "versions": [
      {
        "status": "affected",
        "versionType": "semver",
        "version": "0",
        "lessThanOrEqual": "1.2"
      }
    ],
    "defaultStatus": "affected"
  }
]

References

wpscan.com/vulnerability/ca4d629e-ab55-4e5d-80c9-fddbc9c97259/

EPSS

0.001

Percentile

20.0%

JSON

Related for CVELIST:CVE-2024-7766