4 matches found
CVE-2024-33551
creationtimestamp| type| source ---|---|--- 2024-05-17 09:37:07+00:00| published-proof-of-concept| https://t.me/proxybar/2083 2024-05-17 14:08:04+00:00| published-proof-of-concept| https://t.me/Hunt3rkill3rs1/228 2024-06-25 06:56:30+00:00| published-proof-of-concept|...
CVE-2024-33551
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in 8theme XStore Core allows SQL Injection.This issue affects XStore Core: from n/a through 5.3.5...
CVE-2024-33551
CVE-2024-33551 is an SQL Injection in 8theme XStore Core (WordPress plugin). Affected product: XStore Core up to version 5.3.5. Root cause: improper neutralization of special elements used in SQL queries. Impact per sources: potential unauthenticated SQL injection with high impact on confidential...
WordPress XStore Core Plugin <= 5.3.8 is vulnerable to SQL Injection
Software XStore Core Type Plugin Vulnerable versions = 5.3.8 Fixed in 5.3.9 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-33551 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID 2d04569c89eb Credits Rafie Muhammad Patchstack Required privilege...