CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

7 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2021-11305

Malware in sbrugna...

7.2CVSS7AI score0.00567EPSS

Exploits2References3

RedhatCVE•added 2025/05/22 7:21 p.m.•5 views

CVE-2021-24393

A c GET parameter of the Comment Highlighter WordPress plugin through 0.13 is not properly sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection...

7.2CVSS7.2AI score0.00567EPSS

Exploits2References1

NVD•added 2021/09/06 11:15 a.m.•10 views

CVE-2021-24393

A c GET parameter of the Comment Highlighter WordPress plugin through 0.13 is not properly sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection...

7.2CVSS0.00567EPSS

Exploits2References2

OSV•added 2021/09/06 11:15 a.m.•2 views

CVE-2021-24393

A c GET parameter of the Comment Highlighter WordPress plugin through 0.13 is not properly sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection...

7.2CVSS7.1AI score0.00567EPSS

Exploits2References2

CVE•added 2021/09/06 11:9 a.m.•37 views

CVE-2021-24393

The CVE-2021-24393 entry concerns the WordPress plugin Comment Highlighter (versions up to 0.13). The vulnerability is a SQL injection caused by unsanitized/unchecked c GET parameters that are inserted into an SQL statement. The provided connected documents corroborate this exact flaw across mult...

7.2CVSS7.3AI score0.00567EPSS

Exploits2References2Affected Software1

CNNVD•added 2021/09/06 12:0 a.m.•2 views

WordPress 插件 SQL注入漏洞

WordPress plugin is an open source application plugin for WordPress. A SQL injection vulnerability exists in WordPress plugin Comment Highlighter 0.13 and earlier versions, which stems from a SQL injection caused by c GET parameters not being properly cleaned up, escaped, or validated prior to...

7.2CVSS7.3AI score0.00567EPSS

Exploits2References2