Lucene search
CVE-2024-3495
The Country State City Dropdown CF7 plugin for WordPress is vulnerable to SQL Injection via the ‘cnt’ and 'sid' parameters in versions up to, and including, 2.7.2 due to insufficient escaping and preparation on the existing SQL query
Show more
| Reporter | Title | Published | Views | Family All 10 |
|---|---|---|---|---|
 | CVE-2024-3495 Country State City Dropdown CF7 <= 2.7.2 - Unauthenticated SQL Injection | 22 May 202408:31 | – | cvelist |
 | CVE-2024-3495 | 22 May 202409:15 | – | cve |
 | CVE-2024-3495 Country State City Dropdown CF7 <= 2.7.2 - Unauthenticated SQL Injection | 22 May 202408:31 | – | vulnrichment |
 | WordPress Country State City Dropdown CF7 Plugin <= 2.7.2 is vulnerable to SQL Injection | 22 May 202400:00 | – | patchstack |
 | Wordpress Country State City Dropdown <=2.7.2 - SQL Injection | 29 May 202406:24 | – | nuclei |
 | CVE-2024-3495 | 5 Feb 202510:10 | – | redhatcve |
 | Exploit for CVE-2024-3495 | 23 May 202402:41 | – | githubexploit |
| Exploit for CVE-2024-2876 | 15 Nov 202422:39 | – | githubexploit |
 | Country State City Dropdown CF7 < 2.7.3 - Unauthenticated SQL Injection | 21 May 202400:00 | – | wpvulndb |
 | Wordfence Intelligence Weekly WordPress Vulnerability Report (May 20, 2024 to May 26, 2024) | 30 May 202415:23 | – | wordfence |
10
Transform Your Security Services
Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.
Book a live demo22 May 2024 09:15Current
9.7High risk
Vulners AI Score9.7
CVSS39.8
EPSS0.00066