Lucene search
K

28 matches found

0day.today
0day.today
added 2024/06/02 12:0 a.m.186 views

BWL Advanced FAQ Manager 2.0.3 SQL Injection Vulnerability

Exploit Title: BWL Advanced FAQ Manager 2.0.3 - Authenticated SQL Injection Exploit Author: Ivan Spiridonov xbz0n Software Link: https://codecanyon.net/item/bwl-advanced-faq-manager/5007135 Version: 2.0.3 Tested on: Ubuntu 20.04 CVE: CVE-2024-32136 SQL Injection SQL injection is a type of securit...

7.6CVSS7.5AI score0.01307EPSS
Exploits3
Packet Storm
Packet Storm
added 2024/05/31 12:0 a.m.256 views

BWL Advanced FAQ Manager 2.0.3 SQL Injection

Exploit Title: BWL Advanced FAQ Manager 2.0.3 - Authenticated SQL Injection Date: 14 Apr 2024 Exploit Author: Ivan Spiridonov xbz0n Software Link: https://codecanyon.net/item/bwl-advanced-faq-manager/5007135 Version: 2.0.3 Tested on: Ubuntu 20.04 CVE: CVE-2024-32136 SQL Injection SQL injection is...

4.7CVSS7.1AI score0.01307EPSS
Exploits3
Exploit DB
Exploit DB
added 2024/05/31 12:0 a.m.273 views

BWL Advanced FAQ Manager 2.0.3 - Authenticated SQL Injection

Exploit Title: BWL Advanced FAQ Manager 2.0.3 - Authenticated SQL Injection Date: 14 Apr 2024 Exploit Author: Ivan Spiridonov xbz0n Software Link: https://codecanyon.net/item/bwl-advanced-faq-manager/5007135 Version: 2.0.3 Tested on: Ubuntu 20.04 CVE: CVE-2024-32136 SQL Injection SQL injection is...

7.6CVSS7.6AI score0.01307EPSS
Exploits3
NVD
NVD
added 2024/04/15 8:15 a.m.20 views

CVE-2024-32136

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Xenioushk BWL Advanced FAQ Manager.This issue affects BWL Advanced FAQ Manager: from n/a through 2.0.3...

7.6CVSS7.8AI score0.01307EPSS
Exploits3References1
Vulnrichment
Vulnrichment
added 2024/04/15 7:29 a.m.16 views

CVE-2024-32136 WordPress BWL Advanced FAQ Manager plugin <= 2.0.3 - Auth. SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Xenioushk BWL Advanced FAQ Manager.This issue affects BWL Advanced FAQ Manager: from n/a through 2.0.3...

7.6CVSS8AI score0.01307EPSS
Exploits3References1
Cvelist
Cvelist
added 2024/04/15 7:29 a.m.24 views

CVE-2024-32136 WordPress BWL Advanced FAQ Manager plugin <= 2.0.3 - Auth. SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Xenioushk BWL Advanced FAQ Manager.This issue affects BWL Advanced FAQ Manager: from n/a through 2.0.3...

7.6CVSS8.1AI score0.01307EPSS
Exploits3References1
CVE
CVE
added 2024/04/15 7:29 a.m.58 views

CVE-2024-32136

CVE-2024-32136 is an SQL Injection vulnerability in the BWL Advanced FAQ Manager plugin for WordPress (affected up to version 2.0.3). The issue allows a remote attacker to influence database queries via the plugin, with an exploitable path requiring network access and authenticated (administrator...

7.6CVSS7.7AI score0.01307EPSS
Exploits3References1
Patchstack
Patchstack
added 2024/04/12 12:0 a.m.7 views

WordPress BWL Advanced FAQ Manager Plugin <= 2.0.3 is vulnerable to SQL Injection

Software BWL Advanced FAQ Manager Type Plugin Vulnerable versions = 2.0.3 Fixed in 2.0.4 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-32136 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 3156ca152b4d Credits Ivan Spiridonov Required privilege...

7.6CVSS6.8AI score0.01307EPSS
Exploits3References1Affected Software1
Rows per page
Query Builder