CVE-2024-49655 WordPress ARPrice plugin <= 4.1.3 - Unauthenticated SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in reputeinfosystems ARPrice arprice allows SQL Injection.This issue affects ARPrice: from n/a through = 4.1.3...

PT-2025-2843

Name of the Vulnerable Software and Affected Versions ARPrice versions n/a through 4.0.3 Description The issue is related to improper neutralization of input during web page generation, also known as 'Cross-site Scripting', which allows Reflected XSS. This enables attackers to inject malicious...