Exploit for SQL Injection in Woobewoo Product_Table

Wordpress WBW Product Table Pro = 1.9.4 - Unauthenticated Arb...

CVE-2024-43918

creationtimestamp| type| source ---|---|--- 2024-08-29 17:53:35+00:00| seen| https://t.me/cvedetector/4406 2024-09-25 05:16:47+00:00| published-proof-of-concept| https://t.me/HackerArsenal/434 2024-09-25 15:39:54+00:00| published-proof-of-concept| https://t.me/GithubRedTeam/8582...

CVE-2024-43918

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WBW WBW Product Table PRO allows SQL Injection.This issue affects WBW Product Table PRO: from n/a through 1.9.4...

CVE-2024-43918

CVE-2024-43918 affects WBW Product Table Pro (WordPress) up to version 1.9.4. Root cause: improper neutralization of inputs leading to unauthenticated arbitrary SQL execution. Impact per sources: potential unauthorized data access; some documents also note possible escalation paths. Public exploi...

WordPress WBW Product Table PRO Plugin <= 1.9.4 is vulnerable to SQL Injection

Software WBW Product Table PRO Type Plugin Vulnerable versions = 1.9.4 Fixed in 1.9.5 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-43918 Patch priority High CVSS severity High 10 Developer Claim ownership PSID 2c9d3f09a102 Credits Dave Jong Patchstack Required privilege...