CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Plechev Andrey WP-Recall.This issue affects WP-Recall: from n/a through 16.26.5...

9.3CVSS5.5AI score0.92914EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 7:6 a.m.•2 views

CVE-2024-32710

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Plechev Andrey WP-Recall.This issue affects WP-Recall: from n/a through 16.26.5...

8.5CVSS5.6AI score0.00166EPSS

Exploits0References1

NVD•added 2024/06/08 4:15 p.m.•13 views

CVE-2024-35657

Cross-Site Request Forgery CSRF vulnerability in Plechev Andrey WP-Recall.This issue affects WP-Recall: from n/a through 16.26.6...

5.4CVSS0.00089EPSS

Exploits0References1

Vulnrichment•added 2024/06/08 4:10 p.m.•8 views

CVE-2024-35657 WordPress WP-Recall plugin <= 16.26.6 - Cross Site Request Forgery (CSRF) vulnerability

Cross-Site Request Forgery CSRF vulnerability in Plechev Andrey WP-Recall.This issue affects WP-Recall: from n/a through 16.26.6...

5.4CVSS7AI score0.00089EPSS

Exploits0References1

NVD•added 2024/04/24 8:15 a.m.•7 views

CVE-2024-32710

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Plechev Andrey WP-Recall.This issue affects WP-Recall: from n/a through 16.26.5...

8.5CVSS8.9AI score0.00166EPSS

Exploits0References1

NVD•added 2024/04/24 8:15 a.m.•14 views

CVE-2024-32709

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Plechev Andrey WP-Recall.This issue affects WP-Recall: from n/a through 16.26.5...

9.3CVSS9.7AI score0.92914EPSS

Exploits0References1

CVE•added 2024/04/24 8:2 a.m.•48 views

CVE-2024-32710

CVE-2024-32710 describes an unauthenticated SQL Injection in the WP-Recall plugin for WordPress (WP-Recall) up to version 16.26.5, caused by improper neutralization of SQL elements. The description and Red Hat advisory confirm the issue and indicate the affected product/version range is WP-Recall

8.5CVSS5.6AI score0.00166EPSS

Exploits0References1

Positive Technologies•added 2024/04/24 12:0 a.m.•4 views

PT-2024-24796 · Plechev Andrey · Wp-Recall

Name of the Vulnerable Software and Affected Versions: Plechev Andrey WP-Recall versions through 16.26.5 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential exploitation by injecti...

9.3CVSS7.6AI score0.92914EPSS

Exploits0References4

NVD•added 2024/04/18 9:15 a.m.•9 views

CVE-2024-32604

Authorization Bypass Through User-Controlled Key vulnerability in Plechev Andrey WP-Recall.This issue affects WP-Recall: from n/a through 16.26.5...

4.3CVSS4.7AI score0.00077EPSS

Exploits0References1

CVE•added 2024/04/18 8:14 a.m.•68 views

CVE-2024-32604

CVE-2024-32604 is reported as an Authorization Bypass Through User-Controlled Key affecting the WP-Recall plugin by Plechev Andrey, with impact described as an authorization bypass and affectation from an unknown range ending at version 16.26.5. The connected RH security entry mirrors this descri...

4.3CVSS5.2AI score0.00077EPSS

Exploits0References1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by