Lucene search
K

4 matches found

CNVD
CNVD
added 2020/04/26 12:0 a.m.5 views

WordPress Advanced Woo Search Information Disclosure Vulnerability

WordPress is a blogging platform developed by the WordPress Foundation using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.Advanced Woo Search is a search plugin used in it. An information disclosure vulnerability exists in ajax query requests in Wordpress...

7.5CVSS6AI score0.01984EPSS
Exploits0References1
Patchstack
Patchstack
added 2018/06/05 12:0 a.m.7 views

WordPress WP Events Calendar plugin <= 1.0 - SQL Injection (SQLi) vulnerability

SQL Injection SQLi vulnerability found by Ozkan Mustafa Akkus in premium WordPress WP Events Calendar plugin versions = 1.0. An attacker can perform attacks via calendar ajax queries. However, this plugin is fully PHP-enabled. You can run SQL query with "month" and "year" parameters. Solution 5...

2.8AI score
Exploits0References1Affected Software1
0day.today
0day.today
added 2018/05/28 12:0 a.m.27 views

Wordpress Booking Calendar 3.0.0 Plugin - SQL Injection / Cross-Site Scripting Vulnerabilities

Exploit for php platform in category web applications Exploit Title: Wordpress Plugin Booking Calendar 3.0.0 - SQL Injection / Cross-Site Scripting Exploit Author: Özkan Mustafa Akkuş AkkuS Vendor: Wachipi Vendor Homepage: https://codecanyon.net/item/wp-booking-calendar/4639530 Version: 3.0.0...

0.4AI score
Exploits0
exploitpack
exploitpack
added 2018/05/27 12:0 a.m.13 views

Wordpress Plugin Booking Calendar 3.0.0 - SQL Injection Cross-Site Scripting

Wordpress Plugin Booking Calendar 3.0.0 - SQL Injection Cross-Site Scripting Exploit Title: Wordpress Plugin Booking Calendar 3.0.0 - SQL Injection / Cross-Site Scripting Dork: N/A Date: 26.05.2018 Exploit Author: Özkan Mustafa Akkuş AkkuS Vendor: Wachipi Vendor Homepage:...

0.6AI score
Exploits0
Rows per page
Query Builder