CVE-2022-1014

The WP Contacts Manager WordPress plugin through 2.2.4 fails to properly sanitize user supplied POST data before it is being interpolated in an SQL statement and then executed, leading to an SQL injection vulnerability...

CVE-2022-1014

The WP Contacts Manager WordPress plugin through 2.2.4 fails to properly sanitize user supplied POST data before it is being interpolated in an SQL statement and then executed, leading to an SQL injection vulnerability...

Sql injection

The WP Contacts Manager WordPress plugin through 2.2.4 fails to properly sanitize user supplied POST data before it is being interpolated in an SQL statement and then executed, leading to an SQL injection vulnerability...

CVE-2022-1014 WP Contacts Manager <= 2.2.4 - Unauthenticated SQLi

The WP Contacts Manager WordPress plugin through 2.2.4 fails to properly sanitize user supplied POST data before it is being interpolated in an SQL statement and then executed, leading to an SQL injection vulnerability...

CVE-2022-1014

The CVE-2022-1014 issue affects the WP Contacts Manager WordPress plugin (versions up to 2.2.4). Affected component: the plugin’s handling of POST data in SQL statements, due to inadequate sanitization, enabling SQL injection. Exploitation context shown in multiple sources (unauthenticated SQLi d...

PT-2022-13593 · WordPress · Wp Contacts Manager

Name of the Vulnerable Software and Affected Versions: WP Contacts Manager WordPress plugin versions 2.2.4 and earlier Description: The issue arises from the plugin's failure to properly sanitize user-supplied POST data before it is interpolated in an SQL statement and then executed, leading to a...

WordPress plugin WP Contacts Manager 跨站脚本漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a set of blogging platforms developed using the PHP language. WordPress plugin is an application plugin. cross-site scripting vulnerability exists in versions of WordPress prior to WP Meta SEO plugin 4.4.7,...

WordPress plugin WP Contacts Manager SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation. WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers. WordPress WP Contacts Manager is vulnerable to a SQL injection vulnerability, which...

WordPress WP Contacts Manager plugin <= 2.2.4 - Unauthenticated SQL Injection (SQLi) vulnerability

Unauthenticated SQL Injection SQLi vulnerability discovered by cydave in WordPress WP Contacts Manager plugin versions = 2.2.4. Solution Deactivate and delete. This plugin has been closed as of April 20, 2022 and is not available for download. This closure is temporary, pending a full review...

WP Contacts Manager <= 2.2.4 - Unauthenticated SQLi

The plugin fails to properly sanitize user supplied POST data before it is being interpolated in an SQL statement and then executed, leading to an SQL injection vulnerability. curl 'http://127.0.0.1:8080/wp-admin/admin-ajax.php?action=WPContactsManagercall&type=get-contact' \ --data '"id":"1\u002...

“ProtonMail Contacts” world’s first encrypted contacts manager is here

By Waqas The world-renowned encrypted email service provider ProtonMail is back in the This is a post from HackRead.com Read the original post: ProtonMail Contacts worlds first encrypted contacts manager is here...

IlohaMail Webmail Stored XSS

No description provided by source. !/usr/bin/python ''' Exploit Title: IlohaMail Webmail Stored XSS. Date: 18/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://sourceforge.net/projects/ilohamail/ Software Link:...

IlohaMail Webmail Stored XSS

Exploit for php platform in category web applications !/usr/bin/python ''' Exploit Title: IlohaMail Webmail Stored XSS. Date: 18/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://sourceforge.net/projects/ilohamail/ Software Link:...

IlohaMail Webmail - Persistent Cross-Site Scripting

IlohaMail Webmail - Persistent Cross-Site Scripting !/usr/bin/python ''' Exploit Title: IlohaMail Webmail Stored XSS. Date: 18/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://sourceforge.net/projects/ilohamail/ Software Link:...

IlohaMail Webmail - Persistent Cross-Site Scripting

!/usr/bin/python ''' Exploit Title: IlohaMail Webmail Stored XSS. Date: 18/08/2012 Exploit Author: Shai rod @NightRang3r Vendor Homepage: http://sourceforge.net/projects/ilohamail/ Software Link: http://sourceforge.net/projects/ilohamail/files/IlohaMail-devel/0.9-20050415/ Version: 0.9-20050415...