3 matches found
CVE-2024-49612
creationtimestamp| type| source ---|---|--- 2024-10-20 13:14:52+00:00| seen| https://t.me/cvedetector/8421...
CVE-2024-49612
CVE-2024-49612 : A SQL injection vulnerability in the WordPress plugin SW Contact Form (Infotuts SW Contact Form) arises from improper neutralization of special elements in SQL commands, enabling Blind SQL Injection. Affected versions are listed as n/a through 1.0. CVSS/impact data across sources...
WordPress SW Contact Form Plugin <= 1.0 is vulnerable to SQL Injection
Software SW Contact Form Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-49612 Patch priority High CVSS severity High 8.5 Developer Claim ownership PSID 50cfc368b184 Credits João Pedro S Alcântara Kinorth Required privilege...