5 matches found
CVE-2024-30478
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Bulletin WordPress Announcement & Notification Banner Plugin – Bulletin.This issue affects WordPress Announcement & Notification Banner Plugin – Bulletin: from n/a through 3.8.5...
CVE-2024-30478
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Bulletin WordPress Announcement & Notification Banner Plugin – Bulletin.This issue affects WordPress Announcement & Notification Banner Plugin – Bulletin: from n/a through 3.8.5...
CVE-2024-30478
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Bulletin WordPress Announcement & Notification Banner Plugin – Bulletin.This issue affects WordPress Announcement & Notification Banner Plugin – Bulletin: from n/a through 3.8.5...
CVE-2024-30478
CVE-2024-30478 affects the Bulletin WordPress Plugin (Bulletin Announce/Notification Banner) up to version 3.8.5. The issue is an SQL Injection caused by improper neutralization of special elements in SQL commands, enabling an attacker with network access to compromise confidentiality, integrity,...
WordPress WordPress Announcement & Notification Banner Plugin – Bulletin Plugin <= 3.8.5 is vulnerable to SQL Injection
Software WordPress Announcement & Notification Banner Plugin – Bulletin Type Plugin Vulnerable versions = 3.8.5 Fixed in 3.9.0 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-30478 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID a266bf33abec Credits...