Lucene search
K

46 matches found

RedhatCVE
RedhatCVE
added 2026/06/05 7:45 p.m.8 views

CVE-2026-4079

The SQL Chart Builder WordPress plugin before 2.3.8 does not properly escape user input as it is concatened to SQL queries, making it possible for attackers to conduct SQL Injection attacks against the dynamic filter functionality...

6.5CVSS5.7AI score0.00186EPSS
Exploits1References1
Patchstack
Patchstack
added 2026/04/08 7:32 a.m.4 views

WordPress SQL Chart Builder plugin < 2.3.8 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by dangnosuy in WordPress Plugin SQL Chart Builder versions 2.3.8...

6.5CVSS5.9AI score0.00186EPSS
Exploits1References1Affected Software1
EUVD
EUVD
added 2026/04/07 9:31 a.m.2 views

EUVD-2026-19578

The SQL Chart Builder WordPress plugin before 2.3.8 does not properly escape user input as it is concatened to SQL queries, making it possible for attackers to conduct SQL Injection attacks against the dynamic filter functionality...

6.5CVSS5.9AI score0.00186EPSS
Exploits1References2
NVD
NVD
added 2026/04/07 7:16 a.m.3 views

CVE-2026-4079

The SQL Chart Builder WordPress plugin before 2.3.8 does not properly escape user input as it is concatened to SQL queries, making it possible for attackers to conduct SQL Injection attacks against the dynamic filter functionality...

6.5CVSS0.00186EPSS
Exploits1References1
CVE
CVE
added 2026/04/07 6:0 a.m.20 views

CVE-2026-4079

CVE-2026-4079 pertains to the WordPress plugin “SQL Chart Builder”. Multiple connected sources confirm that versions before 2.3.8 do not properly escape user input before concatenating it into SQL queries used by the dynamic filter functionality, enabling SQL injection. The trigger is unauthentic...

6.5CVSS5.9AI score0.00186EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2026/04/07 6:0 a.m.22 views

CVE-2026-4079 SQL Chart Builder < 2.3.8 - Unauthenticated SQL Injection

The SQL Chart Builder WordPress plugin before 2.3.8 does not properly escape user input as it is concatened to SQL queries, making it possible for attackers to conduct SQL Injection attacks against the dynamic filter functionality...

0.00186EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2026/04/07 6:0 a.m.3 views

CVE-2026-4079 SQL Chart Builder < 2.3.8 - Unauthenticated SQL Injection

The SQL Chart Builder WordPress plugin before 2.3.8 does not properly escape user input as it is concatened to SQL queries, making it possible for attackers to conduct SQL Injection attacks against the dynamic filter functionality...

5.9AI score0.00186EPSS
Exploits1References1
CNNVD
CNNVD
added 2026/04/07 12:0 a.m.7 views

WordPress plugin SQL Chart Builder 安全漏洞

WordPress and WordPress plugins are both products of the WordPress Foundation. WordPress is a blog platform developed using the PHP language. This platform allows for the creation of personal blog websites on servers based on PHP and MySQL. A WordPress plugin is an application extension. There wa...

6.5CVSS5.9AI score0.00186EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/12/10 2:22 p.m.4 views

CVE-2025-66529

Cross-Site Request Forgery CSRF vulnerability in Ays Pro Chartify chart-builder allows Cross Site Request Forgery.This issue affects Chartify: from n/a through = 3.6.3...

4.3CVSS6.9AI score0.00133EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/09 6:30 p.m.2 views

EUVD-2025-202143

Cross-Site Request Forgery CSRF vulnerability in Ays Pro Chartify chart-builder allows Cross Site Request Forgery.This issue affects Chartify: from n/a through = 3.6.3...

6.3AI score0.00133EPSS
Exploits0References2
NVD
NVD
added 2025/12/09 4:18 p.m.4 views

CVE-2025-66529

Cross-Site Request Forgery CSRF vulnerability in Ays Pro Chartify chart-builder allows Cross Site Request Forgery.This issue affects Chartify: from n/a through = 3.6.3...

4.3CVSS0.00133EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-4017

Malicious code in bioql PyPI...

6.5CVSS9.1AI score0.00259EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2025-30593

Malicious code in bioql PyPI...

6.5CVSS6.5AI score0.00196EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/09/24 6:31 p.m.3 views

CVE-2025-58233

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Guaven Labs SQL Chart Builder sql-chart-builder allows DOM-Based XSS.This issue affects SQL Chart Builder: from n/a through = 2.3.7.2...

6.5CVSS5.9AI score0.00196EPSS
Exploits0References1
NVD
NVD
added 2025/09/22 7:16 p.m.2 views

CVE-2025-58233

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Guaven Labs SQL Chart Builder sql-chart-builder allows DOM-Based XSS.This issue affects SQL Chart Builder: from n/a through = 2.3.7.2...

6.5CVSS0.00196EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/09/22 6:50 p.m.6 views

WordPress SQL Chart Builder Plugin <= 2.3.7.2 - Cross Site Scripting (XSS) Vulnerability

Cross Site Scripting XSS Vulnerability discovered by muhammad yudha in WordPress Plugin SQL Chart Builder versions = 2.3.7.2...

6.5CVSS6.6AI score0.00196EPSS
Exploits0Affected Software1
Cvelist
Cvelist
added 2025/09/22 6:23 p.m.9 views

CVE-2025-58233 WordPress SQL Chart Builder Plugin <= 2.3.7.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Guaven Labs SQL Chart Builder sql-chart-builder allows DOM-Based XSS.This issue affects SQL Chart Builder: from n/a through = 2.3.7.2...

6.5CVSS0.00196EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/09/22 6:23 p.m.1 views

CVE-2025-58233 WordPress SQL Chart Builder Plugin <= 2.3.7.2 - Cross Site Scripting (XSS) Vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Guaven Labs SQL Chart Builder sql-chart-builder allows DOM-Based XSS.This issue affects SQL Chart Builder: from n/a through = 2.3.7.2...

6.5CVSS5.9AI score0.00196EPSS
Exploits0References1
CVE
CVE
added 2025/09/22 6:23 p.m.11 views

CVE-2025-58233

CVE-2025-58233 describes a DOM-based XSS vulnerability in Guaven Labs SQL Chart Builder. Affected: SQL Chart Builder versions up to 2.3.7.2 (no fixed version specified in the documents beyond that). The issue is an input handling problem during web page generation that can lead to Cross-Site Scri...

6.5CVSS5.9AI score0.00196EPSS
Exploits0References1
CNNVD
CNNVD
added 2025/09/22 12:0 a.m.1 views

WordPress plugin Guaven Labs SQL Chart Builder 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform has the ability to host personal blog sites on PHP and MySQL based servers.WordPress plugin is an application plug-in. A cross-site scriptin...

6.5CVSS6.4AI score0.00196EPSS
Exploits0References2
Rows per page
Query Builder