14 matches found
EUVD-2024-43315
Malicious code in bioql PyPI...
CVE-2024-49246
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in anand23 Ajax Rating with Custom Login ajax-rating-with-custom-login allows SQL Injection.This issue affects Ajax Rating with Custom Login: from n/a through = 1.1...
CVE-2024-49246
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in anand23 Ajax Rating with Custom Login ajax-rating-with-custom-login allows SQL Injection.This issue affects Ajax Rating with Custom Login: from n/a through = 1.1...
CVE-2024-49246
CVE-2024-49246 describes an SQL Injection vulnerability in WordPress plugin Ajax Rating with Custom Login (versions up to 1.1). The issue arises from improper neutralization of special elements in an SQL command, enabling unauthenticated SQL injection. Public references in the connected documents...
CVE-2024-49246 WordPress Ajax Rating with Custom Login plugin <= 1.1 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in anand23 Ajax Rating with Custom Login ajax-rating-with-custom-login allows SQL Injection.This issue affects Ajax Rating with Custom Login: from n/a through = 1.1...
CVE-2024-49246 WordPress Ajax Rating with Custom Login plugin <= 1.1 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in anand23 Ajax Rating with Custom Login ajax-rating-with-custom-login allows SQL Injection.This issue affects Ajax Rating with Custom Login: from n/a through = 1.1...
PT-2024-33384 · Unknown · Ajax Rating With Custom Login
Name of the Vulnerable Software and Affected Versions: Ajax Rating with Custom Login versions n/a through 1.1 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for SQL Injection, posing...
WordPress plugin Ajax Rating with Custom Login SQL注入漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...
WordPress Ajax Rating with Custom Login plugin <= 1.1 - SQL Injection vulnerability
SQL Injection vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin Ajax Rating with Custom Login versions = 1.1...
WordPress Ajax Rating with Custom Login Plugin <= 1.1 is vulnerable to SQL Injection
Software Ajax Rating with Custom Login Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-49246 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID de8e18fe2e58 Credits stealthcopter Required privilege...
Escort Marketplace 1.0 - SQL Injection
Escort Marketplace 1.0 - SQL Injection Exploit Title: Escort Website Script 1.0 - SQL Injection Dork: N/A Date: 09.09.2017 Vendor Homepage: http://scriptzee.com/ Software Link: http://scriptzee.com/escort-website Demo: http://escortwebsite.scriptzee.com/ Version: 1.0 Category: Webapps Tested on:...
idev Game Site CMS v1.0 - Multiple Web Vulnerabilites
Title: ====== idev Game Site CMS v1.0 - Multiple Web Vulnerabilites Date: ===== 2012-04-08 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=494 VL-ID: ===== 494 Introduction: ============= Start your own Flash web game website. Search engine optimized. Embed your Adsense...
Joomla! Component JE Auto - Local File Inclusion
Joomla! Component JE Auto - Local File Inclusion Name : Joomla comjeauto LFI Vulnerability Date : Dec,7 2010 Vendor Url :http://joomlaextensions.co.in/jeauto Dork:inurl:comjeauto Author : Sid3^effects aKa HaRi Big hugs : Th3 RDX,Hananbutt, special thanks to : r0073r inj3ct0r.com,L0rd...
MemHT Portal 4.0.1 - SQL Injection / Code Execution
!/usr/bin/perl =about MemHT 4.0.1 Perl exploit AUTHOR discovered & written by Ams ax330d doggy gmail dot com VULN. DESCRIPTION: Due to weak params filtering we are able to make SQL-Injection. So, 1. Look at 'inc/ajax/ajaxrating.php', line 29. It is not enough to check whether script has been...