Lucene search
+L

16 matches found

nuclei
nuclei
added 9 hours ago119 views

WP Query Console <= 1.0 - Remote Code Execution

Improper Control of Generation of Code 'Code Injection' vulnerability in LUBUS WP Query Console allows Code Injection.This issue affects WP Query Console- from n/a through 1.0. id: CVE-2024-50498 info: name: WP Query Console = 1.0 - Remote Code Execution author: s4e-io severity: critical...

10CVSS7.2AI score0.5364EPSS
Exploits4References4
packetstorm
packetstorm
added 2026/03/02 12:0 a.m.163 views

📄 WordPress Query Console 1.0 Code Injection

This code represents an advanced, class-based proof-of-concept targeting a code injection vulnerability in WordPress Query Console plugin version 1.0. It is designed as a CLI-only tool that automates payload upload, verification, command execution testing, and optional interactive shell access,...

10CVSS7.5AI score0.5364EPSS
Exploits4
githubexploit
githubexploit
added 2026/01/27 10:19 p.m.161 views

Exploit for Code Injection in Lubus Wp_Query_Console

Introduction Handy tool for developers to quickly test vario...

10CVSS6AI score0.5364EPSS
Exploits4
ptsecurity
ptsecurity
added 2025/08/12 12:0 a.m.12 views

PT-2025-32609 · Sap · Abap Platform

Name of the Vulnerable Software and Affected Versions: ABAP Platform affected versions not specified Description: A missing authorization check in the ABAP Platform allows an authenticated user with elevated privileges to bypass authorization restrictions for common transactions using the SQL...

4.9CVSS7.2AI score0.00312EPSS
Exploits0References6
vulncheck_kev
vulncheck_kev
added 2025/06/08 12:0 a.m.7 views

VulnCheck KEV: CVE-2024-50498

Improper Control of Generation of Code 'Code Injection' vulnerability in Ajit Bohra WP Query Console wp-query-console allows Code Injection.This issue affects WP Query Console: from n/a through = 1.0...

9.8CVSS5.8AI score0.5364EPSS
Exploits4References1
redhatcve
redhatcve
added 2025/02/05 6:43 a.m.6 views

CVE-2024-50498

Improper Control of Generation of Code 'Code Injection' vulnerability in Ajit Bohra WP Query Console wp-query-console allows Code Injection.This issue affects WP Query Console: from n/a through = 1.0...

10CVSS7.4AI score0.5364EPSS
Exploits4References1
githubexploit
githubexploit
added 2024/11/04 10:13 p.m.144 views

Exploit for Code Injection in Lubus Wp_Query_Console

CVE-2024-50498 WP Query Console = 1.0 - Unauthenticated Re...

10CVSS10AI score0.5364EPSS
Exploits4
nvd
nvd
added 2024/10/28 12:15 p.m.36 views

CVE-2024-50498

Improper Control of Generation of Code 'Code Injection' vulnerability in Ajit Bohra WP Query Console wp-query-console allows Code Injection.This issue affects WP Query Console: from n/a through = 1.0...

10CVSS0.5364EPSS
Exploits4References2
attackerkb
attackerkb
added 2024/10/28 12:15 p.m.8 views

CVE-2024-50498

Improper Control of Generation of Code 'Code Injection' vulnerability in LUBUS WP Query Console allows Code Injection.This issue affects WP Query Console: from n/a through 1.0...

10CVSS5.4AI score0.5364EPSS
Exploits4References3
osv
osv
added 2024/10/28 12:15 p.m.6 views

CVE-2024-50498

Improper Control of Generation of Code 'Code Injection' vulnerability in LUBUS WP Query Console allows Code Injection.This issue affects WP Query Console: from n/a through 1.0...

9.8CVSS5.8AI score0.5364EPSS
Exploits4References2
cvelist
cvelist
added 2024/10/28 11:24 a.m.41 views

CVE-2024-50498 WordPress WP Query Console plugin <= 1.0 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Ajit Bohra WP Query Console wp-query-console allows Code Injection.This issue affects WP Query Console: from n/a through = 1.0...

10CVSS0.5364EPSS
Exploits4References1
vulnrichment
vulnrichment
added 2024/10/28 11:24 a.m.20 views

CVE-2024-50498 WordPress WP Query Console plugin <= 1.0 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Ajit Bohra WP Query Console wp-query-console allows Code Injection.This issue affects WP Query Console: from n/a through = 1.0...

10CVSS7.4AI score0.5364EPSS
Exploits4References1
cve
cve
added 2024/10/28 11:24 a.m.120 views

CVE-2024-50498

Summary of CVE-2024-50498: The WordPress plugin WP Query Console ≤ 1.0 is vulnerable to an unauthenticated Remote Code Execution due to improper control of code generation, enabling arbitrary PHP execution via a crafted REST request (example: POST to /wp-json/wqc/v1/query with {"queryArgs":"phpin...

10CVSS7.4AI score0.5364EPSS
In wildExploits4References2Affected Software1
cnnvd
cnnvd
added 2024/10/28 12:0 a.m.12 views

WordPress plugin WP Query Console 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a set of blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A code injection...

10CVSS8.9AI score0.5364EPSS
Exploits4References1
patchstack
patchstack
added 2024/10/25 8:41 a.m.9 views

WordPress WP Query Console plugin <= 1.0 - Remote Code Execution (RCE) vulnerability

Remote Code Execution RCE vulnerability discovered by stealthcopter Patchstack Alliance in WordPress Plugin WP Query Console versions = 1.0...

10CVSS7.5AI score0.5364EPSS
Exploits4Affected Software1
patchstack
patchstack
added 2024/10/25 12:0 a.m.21 views

WordPress WP Query Console Plugin <= 1.0 is vulnerable to Remote Code Execution (RCE)

Software WP Query Console Type Plugin Vulnerable versions = 1.0 Fixed in N/A OWASP Top 10 A3: Injection Classification Remote Code Execution RCE CVE CVE-2024-50498 Patch priority High CVSS severity High 10 Developer Claim ownership PSID af5ddac5f157 Credits stealthcopter Required privilege...

10CVSS7.6AI score0.5364EPSS
Exploits4References1Affected Software1
Rows per page
Query Builder