Lucene search
+L

27 matches found

Patchstack
Patchstack
added 2024/04/25 12:15 p.m.4 views

WordPress WZone plugin <= 14.0.10 - Unauthenticated SQL Injection vulnerability

Unauthenticated SQL Injection vulnerability discovered by Rafie Muhammad Patchstack in WordPress Plugin WZone versions = 14.0.10...

9.3CVSS8.1AI score0.00629EPSS
Exploits0Affected Software1
Patchstack
Patchstack
added 2024/04/25 12:0 a.m.12 views

WordPress WZone Plugin <= 14.0.33 is vulnerable to Cross Site Scripting (XSS)

Software WZone Type Plugin Vulnerable versions = 14.0.33 Fixed in N/A OWASP Top 10 A3: Injection Classification Cross Site Scripting XSS CVE CVE-2024-33548 Patch priority Medium CVSS severity Medium 7.1 Developer Claim ownership PSID 056b1a28280e Credits Rafie Muhammad Patchstack Required privile...

7.1CVSS6.5AI score0.00375EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/04/25 12:0 a.m.18 views

WordPress WZone Plugin <= 14.0.33 is vulnerable to SQL Injection

Software WZone Type Plugin Vulnerable versions = 14.0.33 Fixed in N/A OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-33546 Patch priority High CVSS severity High 9.6 Developer Claim ownership PSID 44537a1aade6 Credits Rafie Muhammad Patchstack Required privilege Subscriber...

9.6CVSS6.8AI score0.00529EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/04/25 12:0 a.m.23 views

WordPress WZone Plugin <= 14.0.10 is vulnerable to SQL Injection

Software WZone Type Plugin Vulnerable versions = 14.0.10 Fixed in 14.0.31 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-33544 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID 102966976300 Credits Rafie Muhammad Patchstack Required privilege...

9.3CVSS6.8AI score0.00629EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/04/25 12:0 a.m.15 views

WordPress WZone Plugin <= 14.0.33 is vulnerable to Broken Access Control

Software WZone Type Plugin Vulnerable versions = 14.0.33 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-33545 Patch priority Low CVSS severity Low 5.3 Developer Claim ownership PSID 24bb9a69dcd0 Credits Rafie Muhammad Patchstack Required...

9.8CVSS6.6AI score0.00365EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/04/25 12:0 a.m.16 views

WordPress WZone Plugin <= 14.0.33 is vulnerable to Broken Access Control

Software WZone Type Plugin Vulnerable versions = 14.0.33 Fixed in N/A OWASP Top 10 A1: Broken Access Control Classification Broken Access Control CVE CVE-2024-33547 Patch priority High CVSS severity High 8.3 Developer Claim ownership PSID 0e636c441e01 Credits Rafie Muhammad Patchstack Required...

8.8CVSS6.5AI score0.00387EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2023/02/06 1:15 p.m.22 views

CVE-2022-27628

Cross-Site Request Forgery CSRF vulnerability in AA-Team WZone – Lite Version plugin 3.1 Lite versions...

6.5CVSS5.4AI score0.00234EPSS
Exploits0References1
Rows per page
Query Builder