Lucene search
K

11 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 9:0 a.m.4 views

CVE-2023-29096

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in BestWebSoft Contact Form to DB by BestWebSoft – Messages Database Plugin For WordPress.This issue affects Contact Form to DB by BestWebSoft – Messages Database Plugin For WordPress: from n/a throug...

8.8CVSS8.8AI score0.00706EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-35437

Malicious code in bioql PyPI...

8.8CVSS6.4AI score0.00441EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/04 10:15 p.m.13 views

CVE-2024-35678

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in BestWebSoft Contact Form to DB by BestWebSoft.This issue affects Contact Form to DB by BestWebSoft: from n/a through 1.7.2...

8.8CVSS7.5AI score0.00441EPSS
Exploits0References1
NVD
NVD
added 2024/06/08 4:15 p.m.41 views

CVE-2024-35678

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in BestWebSoft Contact Form to DB by BestWebSoft.This issue affects Contact Form to DB by BestWebSoft: from n/a through 1.7.2...

8.8CVSS0.00441EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/06/08 3:57 p.m.29 views

CVE-2024-35678 WordPress Contact Form to DB by BestWebSoft plugin <= 1.7.2 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in BestWebSoft Contact Form to DB by BestWebSoft.This issue affects Contact Form to DB by BestWebSoft: from n/a through 1.7.2...

8.5CVSS0.00441EPSS
Exploits0References1
NVD
NVD
added 2023/10/31 3:15 p.m.28 views

CVE-2023-36508

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in BestWebSoft Contact Form to DB by BestWebSoft – Messages Database Plugin For WordPress contact-form-to-db allows SQL Injection.This issue affects Contact Form to DB by BestWebSoft – Messages Databa...

9.8CVSS9.8AI score0.00716EPSS
Exploits0References1
CVE
CVE
added 2023/10/31 2:23 p.m.119 views

CVE-2023-36508

CVE-2023-36508 —SQL Injection in the WordPress plugin "Contact Form to DB by BestWebSoft – Messages Database". Affected versions: from n/a through 1.7.1 (BestWebSoft). Root cause: improper neutralization of input in SQL commands, enabling unauthenticated injection under administrator context. Imp...

9.8CVSS8.9AI score0.00716EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2023/06/23 12:0 a.m.14 views

WordPress Contact Form to DB by BestWebSoft Plugin <= 1.7.1 is vulnerable to SQL Injection

Software Contact Form to DB by BestWebSoft Type Plugin Vulnerable versions = 1.7.1 Fixed in 1.7.2 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-36508 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID d7318d25ca7b Credits LEE SE HYOUNG hackintoanetwork...

9.8CVSS6.8AI score0.00716EPSS
Exploits0References2Affected Software1
Patchstack
Patchstack
added 2023/04/17 12:0 a.m.9 views

WordPress Contact Form to DB by BestWebSoft Plugin <= 1.7.0 is vulnerable to SQL Injection

Software Contact Form to DB by BestWebSoft Type Plugin Vulnerable versions = 1.7.0 Fixed in 1.7.1 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-29096 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 44860e7fab20 Credits easyBug Required privilege...

8.8CVSS7.2AI score0.00706EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2019/08/13 5:15 p.m.4 views

CVE-2017-18492

The contact-form-to-db plugin before 1.5.7 for WordPress has multiple XSS issues...

6.1CVSS5.8AI score0.01458EPSS
Exploits1References1
CVE
CVE
added 2019/08/13 4:47 p.m.73 views

CVE-2017-18492

The CVE applies to the WordPress plugin contact-form-to-db,

6.1CVSS6AI score0.01458EPSS
Exploits1References1Affected Software1
Rows per page
Query Builder