Lucene search
K

57 matches found

OSV
OSV
added 2024/08/29 3:15 p.m.5 views

CVE-2024-38795

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CridioStudio ListingPro allows SQL Injection.This issue affects ListingPro: from n/a through 2.9.4...

9.8CVSS5.8AI score0.00462EPSS
Exploits0References1
OSV
OSV
added 2024/08/29 3:15 p.m.5 views

CVE-2024-39620

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CridioStudio ListingPro allows SQL Injection.This issue affects ListingPro: from n/a through 2.9.4...

8.8CVSS5.8AI score0.00445EPSS
Exploits0References1
OSV
OSV
added 2024/08/29 3:15 p.m.5 views

CVE-2024-39622

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CridioStudio ListingPro.This issue affects ListingPro: from n/a through 2.9.4...

9.8CVSS5.8AI score0.00462EPSS
Exploits0References1
NVD
NVD
added 2024/08/29 3:15 p.m.31 views

CVE-2024-39620

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CridioStudio ListingPro listingpro-plugin allows SQL Injection.This issue affects ListingPro: from n/a through = 2.9.4...

8.8CVSS0.00445EPSS
Exploits0References1
NVD
NVD
added 2024/08/29 3:15 p.m.28 views

CVE-2024-39622

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CridioStudio ListingPro listingpro allows SQL Injection.This issue affects ListingPro: from n/a through = 2.9.4...

9.8CVSS0.00462EPSS
Exploits0References1
NVD
NVD
added 2024/08/29 3:15 p.m.23 views

CVE-2024-38795

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CridioStudio ListingPro listingpro-plugin allows SQL Injection.This issue affects ListingPro: from n/a through = 2.9.4...

9.8CVSS0.00462EPSS
Exploits0References1
CVE
CVE
added 2024/08/29 2:18 p.m.63 views

CVE-2024-39622

CVE-2024-39622 is an unauthenticated SQL injection in the WordPress ListingPro theme (and ListingPro Plugin entries) affecting versions up to 2.9.4; root cause is improper neutralization of SQL elements. Patch status across sources shows a fix in 2.9.5 (ListingPro theme) and related updates; unpa...

9.8CVSS5.9AI score0.00462EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/08/29 2:14 p.m.64 views

CVE-2024-39620

CVE-2024-39620 is the WordPress ListingPro plugin SQL Injection vulnerability (ListingPro

8.8CVSS5.9AI score0.00445EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2024/08/29 2:14 p.m.21 views

CVE-2024-39620 WordPress ListingPro plugin <= 2.9.4 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in CridioStudio ListingPro allows SQL Injection.This issue affects ListingPro: from n/a through 2.9.4...

8.5CVSS7.7AI score0.00445EPSS
Exploits0References1
CVE
CVE
added 2024/08/29 2:8 p.m.58 views

CVE-2024-38795

CVE-2024-38795 affects ListingPro Plugin for WordPress (versions

9.8CVSS5.9AI score0.00462EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/08/01 9:15 p.m.31 views

CVE-2024-39624

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in CridioStudio ListingPro listingpro allows PHP Local File Inclusion.This issue affects ListingPro: from n/a through = 2.9.4...

8.8CVSS0.00525EPSS
Exploits0References1
NVD
NVD
added 2024/08/01 9:15 p.m.25 views

CVE-2024-39619

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in CridioStudio ListingPro listingpro-plugin allows PHP Local File Inclusion.This issue affects ListingPro: from n/a through = 2.9.4...

9.8CVSS0.00553EPSS
Exploits0References1
CVE
CVE
added 2024/08/01 8:44 p.m.65 views

CVE-2024-39619

CVE-2024-39619 is a Path Traversal vulnerability in ListingPro (WordPress plugin/theme project) that allows PHP Local File Inclusion. Affected: ListingPro listing plugin versions up to 2.9.3 (and related listings in patch sources). Root cause per sources: improper limitation of a pathname to a re...

9.8CVSS5.9AI score0.00553EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/08/01 8:44 p.m.23 views

CVE-2024-39619 WordPress ListingPro plugin <= 2.9.4 - Unauthenticated Local File Inclusion vulnerability

Improper Limitation of a Pathname to a Restricted Directory 'Path Traversal' vulnerability in CridioStudio ListingPro listingpro-plugin allows PHP Local File Inclusion.This issue affects ListingPro: from n/a through = 2.9.4...

9CVSS0.00553EPSS
Exploits0References1
CVE
CVE
added 2024/08/01 8:42 p.m.55 views

CVE-2024-39621

CVE-2024-39621 describes a path traversal vulnerability in ListingPro (WordPress plugin) that allows PHP local file inclusion in versions up to 2.9.3. Multiple connected sources confirm the issue originates from improper pathname limitation, enabling access to restricted directories and potential...

8CVSS5.9AI score0.00521EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2024/08/01 8:40 p.m.62 views

CVE-2024-39624

CVE-2024-39624: WordPress ListingPro Listing Theme

8.8CVSS5.9AI score0.00525EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/08/01 12:0 a.m.7 views

PT-2024-28558 · Cridiostudio · Listingpro

Name of the Vulnerable Software and Affected Versions: ListingPro versions n/a through 2.9.3 Description: The issue is related to an Improper Limitation of a Pathname to a Restricted Directory, also known as a 'Path Traversal' vulnerability, in CridioStudio ListingPro. This allows for PHP Local...

8CVSS6.8AI score0.00521EPSS
Exploits0References4
Rows per page
Query Builder