Lucene search
K

242 matches found

CVE
CVE
added 2025/02/19 11:10 a.m.47 views

CVE-2024-13483

CVE-2024-13483 affects the WordPress plugin LTL Freight Quotes – SAIA Edition up to version 2.2.10 . The issue is an unauthenticated SQL Injection via the parameters edit_id and dropship_edit_id due to insufficient escaping and inadequate SQL query preparation, enabling attackers to append querie...

7.5CVSS7.6AI score0.00736EPSS
Exploits3References2Affected Software1
Cvelist
Cvelist
added 2025/02/19 11:10 a.m.29 views

CVE-2024-13481 LTL Freight Quotes – R+L Carriers Edition <= 3.3.4 - Unauthenticated SQL Injection

The LTL Freight Quotes – R+L Carriers Edition plugin for WordPress is vulnerable to SQL Injection via the 'editid' and 'dropshipeditid' parameters in all versions up to, and including, 3.3.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...

7.5CVSS0.00923EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/02/19 11:10 a.m.21 views

CVE-2024-13485 LTL Freight Quotes – ABF Freight Edition <= 3.3.7 - Unauthenticated SQL Injection

The LTL Freight Quotes – ABF Freight Edition plugin for WordPress is vulnerable to SQL Injection via the 'editid' and 'dropshipeditid' parameters in all versions up to, and including, 3.3.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...

7.5CVSS0.00956EPSS
Exploits3References2
Vulnrichment
Vulnrichment
added 2025/02/19 11:10 a.m.12 views

CVE-2024-13485 LTL Freight Quotes – ABF Freight Edition <= 3.3.7 - Unauthenticated SQL Injection

The LTL Freight Quotes – ABF Freight Edition plugin for WordPress is vulnerable to SQL Injection via the 'editid' and 'dropshipeditid' parameters in all versions up to, and including, 3.3.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...

7.5CVSS7.8AI score0.00956EPSS
Exploits3References2
CVE
CVE
added 2025/02/19 11:10 a.m.43 views

CVE-2024-13481

CVE-2024-13481 – LTL Freight Quotes – R+L Carriers Edition (WordPress) Affected software: LTL Freight Quotes – R+L Carriers Edition plugin for WordPress, all versions up to and including 3.3.4. Root cause: SQL Injection via the edit_id and dropship_edit_id parameters caused by insufficient escapi...

7.5CVSS7.7AI score0.00923EPSS
Exploits1References2Affected Software1
CVE
CVE
added 2025/02/19 11:10 a.m.45 views

CVE-2024-13485

CVE-2024-13485 affects the WordPress plugin “LTL Freight Quotes – ABF Freight Edition” up to version 3.3.7. The vulnerability is an unauthenticated SQL injection via the parameters “edit_id” and “dropship_edit_id” caused by insufficient escaping and unsafe query construction, enabling attackers t...

7.5CVSS7.6AI score0.00956EPSS
Exploits3References2Affected Software1
Cvelist
Cvelist
added 2025/02/19 11:10 a.m.25 views

CVE-2024-13478 LTL Freight Quotes – TForce Edition <= 3.6.4 - Unauthenticated SQL Injection

The LTL Freight Quotes – TForce Edition plugin for WordPress is vulnerable to SQL Injection via the 'dropshipeditid' and 'editid' parameters in all versions up to, and including, 3.6.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing S...

7.5CVSS0.01125EPSS
Exploits3References2
CVE
CVE
added 2025/02/19 11:10 a.m.48 views

CVE-2024-13478

The CVE covers the WordPress plugin LTL Freight Quotes – TForce Edition. Affected component: the WordPress plugin (ltl-freight-quotes-ups-edition). Root cause: insufficient escaping on the user-supplied parameters dropship_edit_id and edit_id and inadequate preparation of the underlying SQL query...

7.5CVSS7.7AI score0.01125EPSS
Exploits3References2Affected Software1
Vulnrichment
Vulnrichment
added 2025/02/19 11:10 a.m.13 views

CVE-2024-13479 LTL Freight Quotes – SEFL Edition <= 3.2.4 - Unauthenticated SQL Injection

The LTL Freight Quotes – SEFL Edition plugin for WordPress is vulnerable to SQL Injection via the 'dropshipeditid' and 'editid' parameters in all versions up to, and including, 3.2.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

7.5CVSS7.8AI score0.00736EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/02/19 11:10 a.m.11 views

CVE-2024-13478 LTL Freight Quotes – TForce Edition <= 3.6.4 - Unauthenticated SQL Injection

The LTL Freight Quotes – TForce Edition plugin for WordPress is vulnerable to SQL Injection via the 'dropshipeditid' and 'editid' parameters in all versions up to, and including, 3.6.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing S...

7.5CVSS7.8AI score0.01125EPSS
Exploits3References2
Cvelist
Cvelist
added 2025/02/19 11:10 a.m.14 views

CVE-2024-13479 LTL Freight Quotes – SEFL Edition <= 3.2.4 - Unauthenticated SQL Injection

The LTL Freight Quotes – SEFL Edition plugin for WordPress is vulnerable to SQL Injection via the 'dropshipeditid' and 'editid' parameters in all versions up to, and including, 3.2.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL...

7.5CVSS0.00736EPSS
Exploits1References2
OSV
OSV
added 2025/02/19 10:15 a.m.5 views

CVE-2024-13489

The LTL Freight Quotes – Old Dominion Edition plugin for WordPress is vulnerable to SQL Injection via the 'editid' and 'dropshipeditid' parameters in all versions up to, and including, 4.2.10 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...

7.5CVSS7.3AI score0.0073EPSS
Exploits3References2
Vulnrichment
Vulnrichment
added 2025/02/19 9:21 a.m.10 views

CVE-2024-13489 LTL Freight Quotes – Old Dominion Edition <= 4.2.10 - Unauthenticated SQL Injection

The LTL Freight Quotes – Old Dominion Edition plugin for WordPress is vulnerable to SQL Injection via the 'editid' and 'dropshipeditid' parameters in all versions up to, and including, 4.2.10 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...

7.5CVSS7.8AI score0.0073EPSS
Exploits3References2
Cvelist
Cvelist
added 2025/02/19 9:21 a.m.32 views

CVE-2024-13489 LTL Freight Quotes – Old Dominion Edition <= 4.2.10 - Unauthenticated SQL Injection

The LTL Freight Quotes – Old Dominion Edition plugin for WordPress is vulnerable to SQL Injection via the 'editid' and 'dropshipeditid' parameters in all versions up to, and including, 4.2.10 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...

7.5CVSS0.0073EPSS
Exploits3References2
Patchstack
Patchstack
added 2025/02/19 12:2 a.m.5 views

WordPress LTL Freight Quotes – SEFL Edition plugin <= 3.2.4 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by Colin Xu in WordPress Plugin LTL Freight Quotes – SEFL Edition versions = 3.2.4...

7.5CVSS8.1AI score0.00736EPSS
Exploits1References1Affected Software1
CNNVD
CNNVD
added 2025/02/19 12:0 a.m.3 views

WordPress plugin LTL Freight Quotes SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

7.5CVSS9.2AI score0.00923EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/02/19 12:0 a.m.3 views

WordPress plugin LTL Freight Quotes SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

7.5CVSS8AI score0.00736EPSS
Exploits3References2
CNNVD
CNNVD
added 2025/02/19 12:0 a.m.3 views

WordPress plugin LTL Freight Quotes SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

7.5CVSS8AI score0.01125EPSS
Exploits3References2
CNNVD
CNNVD
added 2025/02/19 12:0 a.m.3 views

WordPress plugin LTL Freight Quotes SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

7.5CVSS9.2AI score0.00736EPSS
Exploits1References2
CNNVD
CNNVD
added 2025/02/19 12:0 a.m.4 views

WordPress plugin LTL Freight Quotes SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

7.5CVSS8AI score0.0073EPSS
Exploits3References2
Rows per page
Query Builder