6 matches found
CVE-2024-37933
creationtimestamp| type| source ---|---|--- 2024-07-12 16:56:16+00:00| seen| https://t.me/cvedetector/750...
CVE-2024-37933
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in anhvnit Woocommerce OpenPos.This issue affects Woocommerce OpenPos: from n/a through 6.4.4...
CVE-2024-37933 WordPress Woocommerce OpenPos plugin <= 6.4.4 - Unauthenticated SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in anhvnit Woocommerce OpenPos.This issue affects Woocommerce OpenPos: from n/a through 6.4.4...
CVE-2024-37933 WordPress Woocommerce OpenPos plugin <= 6.4.4 - Unauthenticated SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in anhvnit Woocommerce OpenPos.This issue affects Woocommerce OpenPos: from n/a through 6.4.4...
CVE-2024-37933
CVE-2024-37933 is a confirmed, active SQL injection affecting Woocommerce OpenPos for WordPress (Openpos) up to version 6.4.4. The vulnerability arises from improper neutralization of input in SQL commands, enabling an unauthenticated attacker to potentially access or alter data over the network....
WordPress Woocommerce OpenPos Plugin <= 6.4.4 is vulnerable to SQL Injection
Software Woocommerce OpenPos Type Plugin Vulnerable versions = 6.4.4 Fixed in 7.0.1 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-37933 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID ffbf45a16888 Credits Dave Jong Patchstack Required privilege...