Lucene search
K

29 matches found

NVD
NVD
added 2023/12/31 6:15 p.m.21 views

CVE-2023-52133

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WhileTrue Most And Least Read Posts Widget.This issue affects Most And Least Read Posts Widget: from n/a through 2.5.16...

8.8CVSS0.00538EPSS
Exploits0References1
OSV
OSV
added 2023/12/31 6:15 p.m.4 views

CVE-2023-52133

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WhileTrue Most And Least Read Posts Widget.This issue affects Most And Least Read Posts Widget: from n/a through 2.5.16...

8.8CVSS7.3AI score0.00538EPSS
Exploits0References1
Prion
Prion
added 2023/12/31 6:15 p.m.26 views

Sql injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WhileTrue Most And Least Read Posts Widget.This issue affects Most And Least Read Posts Widget: from n/a through 2.5.16...

6.5CVSS7.9AI score0.00538EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2023/12/31 5:33 p.m.74 views

CVE-2023-52133

CVE-2023-52133 affects the Most And Least Read Posts Widget plugin (WordPress). The vulnerability is an SQL Injection in widget settings that can be exploited by an authenticated user with Contributor+ privileges. Affected range is from n/a through version 2.5.16; the entry notes the issue was pa...

8.8CVSS8.8AI score0.00538EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/12/31 12:0 a.m.8 views

PT-2023-31926 · Unknown · Whiletrue Most/Least Read Posts Widget

Name of the Vulnerable Software and Affected Versions: WhileTrue Most And Least Read Posts Widget versions 2.5.16 and earlier Description: The issue is related to an Improper Neutralization of Special Elements used in an SQL Command, also known as 'SQL Injection'. This allows for potential...

8.8CVSS9.1AI score0.00538EPSS
Exploits0References7
CNNVD
CNNVD
added 2023/12/31 12:0 a.m.4 views

WordPress Plugin Most And Least Read Posts Widget SQL Injection Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. WordPress Plugin Most And Least Read Posts...

8.8CVSS7.2AI score0.00538EPSS
Exploits0References2
OSV
OSV
added 2023/06/07 2:15 a.m.3 views

CVE-2020-36730

The CMP for WordPress is vulnerable to authorization bypass due to a missing capability check on the cmpgetpostdetail, niteoexportcsv, and cmpdisablecomingsoonajax functions in versions up to, and including, 3.8.1. This makes it possible for unauthenticated attackers to read posts, export...

9.3CVSS5.8AI score0.02269EPSS
Exploits1References4
NVD
NVD
added 2020/11/19 1:15 a.m.20 views

CVE-2020-8278

Improper access control in Nextcloud Social app version 0.3.1 allowed to read posts of any user...

5.3CVSS5.2AI score0.01004EPSS
Exploits1References2
Nextcloud
Nextcloud
added 2020/10/15 12:0 a.m.26 views

Improper access control to messages of Social app (NC-SA-2020-042)

Improper access control in Social app 0.3.1 allowed to read posts of any user...

5CVSS3.9AI score0.01004EPSS
Exploits1Affected Software1
Rows per page
Query Builder