Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 6:14 p.m.9 views

CVE-2019-25212

The video carousel slider with lightbox plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it...

9.1CVSS7.2AI score0.00501EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/09/11 8:31 a.m.28 views

CVE-2019-25212 video carousel slider with lightbox <= 1.0.6 - Authenticated (Admin+) SQL Injection

The video carousel slider with lightbox plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it...

4.9CVSS0.00501EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/09/11 8:31 a.m.11 views

CVE-2019-25212 video carousel slider with lightbox <= 1.0.6 - Authenticated (Admin+) SQL Injection

The video carousel slider with lightbox plugin for WordPress is vulnerable to SQL Injection via the 'id' parameter in all versions up to, and including, 1.0.6 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it...

4.9CVSS9.2AI score0.00501EPSS
Exploits0References3
Patchstack
Patchstack
added 2024/09/11 12:0 a.m.15 views

WordPress video carousel slider with lightbox Plugin <= 1.0.6 is vulnerable to SQL Injection

Software video carousel slider with lightbox Type Plugin Vulnerable versions = 1.0.6 Fixed in 1.0.7 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2019-25212 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 8ccaa8ef0272 Credits Ala Arfaoui Required privileg...

9.1CVSS6.9AI score0.00501EPSS
Exploits0References3Affected Software1
Rows per page
Query Builder