Lucene search
HistoryMar 21, 2024 - 5:15 p.m.
CVE-2024-27956
cve-2024-27956
sql injection
valvepress automatic
CVSS3
9.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:L
AI Score
9.8
Confidence
High
EPSS
0.001
Percentile
19.4%
Improper Neutralization of Special Elements used in an SQL Command (‘SQL Injection’) vulnerability in ValvePress Automatic allows SQL Injection.This issue affects Automatic: from n/a through 3.92.0.
Related
nuclei
nuclei
WordPress Automatic Plugin <= 3.92.0 - SQL Injection
2024-04-29 12:00:55
WordPress Automatic Plugin <3.92.1 - Arbitrary File Download and SSRF
2024-03-22 15:33:04
githubexploit
githubexploit
Exploit for CVE-2024-27956
2024-06-07 04:40:06
Exploit for CVE-2024-27956
2024-05-01 01:58:28
Exploit for CVE-2024-27956
2024-06-14 07:13:54
cve
cve
CVE-2024-27956
2024-03-21 17:15:08
cvelist
cvelist
vulnrichment
vulnrichment
wpvulndb
wpvulndb
Automatic < 3.92.1 - Unauthenticated SQL Injection
2024-03-20 00:00:00
wallarmlab
wallarmlab
thn
thn
wordfence
wordfence
CVSS3
9.9
Attack Vector
NETWORK
Attack Complexity
LOW
Privileges Required
NONE
User Interaction
NONE
Scope
CHANGED
Confidentiality Impact
LOW
Integrity Impact
HIGH
Availability Impact
LOW
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:L/I:H/A:L
AI Score
9.8
Confidence
High
EPSS
0.001
Percentile
19.4%
Related for NVD:CVE-2024-27956