Lucene search
+L

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:4 p.m.7 views

CVE-2021-24404

The options.php file of the WP-Board WordPress plugin through 1.1 beta accepts a postid parameter which is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection. This is a time based SQLI and in the same function vulnerable parameter is passed twice so ...

8.8CVSS7.5AI score0.0471EPSS
Exploits2References1
OSV
OSV
added 2021/09/20 10:15 a.m.6 views

CVE-2021-24404

The options.php file of the WP-Board WordPress plugin through 1.1 beta accepts a postid parameter which is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection. This is a time based SQLI and in the same function vulnerable parameter is passed twice so ...

8.8CVSS5.9AI score0.0471EPSS
Exploits2References2
CVE
CVE
added 2021/09/20 10:6 a.m.45 views

CVE-2021-24404

The CVE-2021-24404 entry concerns the WP-Board WordPress plugin (versions up to 1.1 beta). The vulnerability is a SQL injection in options.php where the postid parameter is not sanitized, escaped, or validated before being inserted into a SQL statement. The issue is described as a time-based SQLi...

8.8CVSS9AI score0.0471EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2021/09/20 10:6 a.m.16 views

CVE-2021-24404 WP-Board <= 1.1 (beta) - Unauthenticated SQL Injection

The options.php file of the WP-Board WordPress plugin through 1.1 beta accepts a postid parameter which is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection. This is a time based SQLI and in the same function vulnerable parameter is passed twice so ...

9.2AI score0.0471EPSS
Exploits2References2
Rows per page
Query Builder