4 matches found
WordPress WP Project Manager plugin <= 2.6.26 - SQL Injection vulnerability
SQL Injection vulnerability discovered by Joshua Martinelle in WordPress Plugin WP Project Manager versions = 2.6.26...
WordPress Paid Memberships Pro v2.9.8 Plugin - Unauthenticated SQL Injection Exploit
!/usr/bin/env python Exploit Title: Paid Memberships Pro v2.9.8 WordPress Plugin - Unauthenticated SQL Injection Exploit Author: r3nt0n CVE: CVE-2023-23488 Vulnerability discovered by Joshua Martinelle Vendor Homepage: https://www.paidmembershipspro.com Software Link:...
Paid Memberships Pro v2.9.8 (WordPress Plugin) - Unauthenticated SQL Injection
!/usr/bin/env python Exploit Title: Paid Memberships Pro v2.9.8 WordPress Plugin - Unauthenticated SQL Injection Exploit Author: r3nt0n CVE: CVE-2023-23488 Date: 2023/01/24 Vulnerability discovered by Joshua Martinelle Vendor Homepage: https://www.paidmembershipspro.com Software Link:...
WordPress Easy Digital Downloads Plugin <= 3.1.0.3 is vulnerable to SQL Injection
Software Easy Digital Downloads Type Plugin Vulnerable versions = 3.1.0.3 Fixed in 3.1.0.4 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-23489 Patch priority High CVSS severity High 8.2 Developer Claim ownership PSID 8ebed23bcf9a Credits Joshua Martinelle Required privilege...