Lucene search
+L

7 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 9:3 p.m.15 views

CVE-2021-24762

The Perfect Survey WordPress plugin before 1.5.2 does not validate and escape the questionid GET parameter before using it in a SQL statement in the getquestion AJAX action, allowing unauthenticated users to perform SQL injection...

9.8CVSS7.2AI score0.86896EPSS
Exploits7References1
Circl
Circl
added 2022/06/20 7:53 p.m.37 views

CVE-2021-24762

creationtimestamp| type| source ---|---|--- 2022-06-20 19:53:12+00:00| published-proof-of-concept| https://t.me/LeakingXTeam/20993 2022-06-20 19:53:12+00:00| published-proof-of-concept| https://t.me/spammerspacer/33792 2022-06-20 19:53:12+00:00| published-proof-of-concept|...

9.8CVSS7.3AI score0.86896EPSS
In wildExploits7References9
Packet Storm
Packet Storm
added 2022/02/21 12:0 a.m.335 views

WordPress Perfect Survey 1.5.1 SQL Injection

Exploit Title: WordPress Plugin Perfect Survey - 1.5.1 - SQLi Unauthenticated Date 18.02.2022 Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://www.getperfectsurvey.com/ Software Link:...

9.8CVSS0.2AI score0.86896EPSS
Exploits7
0day.today
0day.today
added 2022/02/21 12:0 a.m.427 views

WordPress Perfect Survey Plugin - 1.5.1 - SQL injection (Unauthenticated) Exploit

Exploit Title: WordPress Plugin Perfect Survey - 1.5.1 - SQLi Unauthenticated Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://www.getperfectsurvey.com/ Software Link: https://web.archive.org/web/20210817031040/https://downloads.wordpress.org/plugin/perfect-survey.1.5.1.zip Version:...

9.8CVSS0.7AI score0.86896EPSS
Exploits7
Exploit DB
Exploit DB
added 2022/02/21 12:0 a.m.1117 views

WordPress Plugin Perfect Survey - 1.5.1 - SQLi (Unauthenticated)

Exploit Title: WordPress Plugin Perfect Survey - 1.5.1 - SQLi Unauthenticated Date 18.02.2022 Exploit Author: Ron Jost Hacker5preme Vendor Homepage: https://www.getperfectsurvey.com/ Software Link:...

9.8CVSS9.6AI score0.86896EPSS
Exploits7
Cvelist
Cvelist
added 2022/02/01 12:21 p.m.61 views

CVE-2021-24762 Perfect Survey < 1.5.2 - Unauthenticated SQL Injection

The Perfect Survey WordPress plugin before 1.5.2 does not validate and escape the questionid GET parameter before using it in a SQL statement in the getquestion AJAX action, allowing unauthenticated users to perform SQL injection...

10AI score0.86896EPSS
Exploits7References2
CVE
CVE
added 2022/02/01 12:21 p.m.430 views

CVE-2021-24762

CVE-2021-24762 affects WordPress Perfect Survey plugin versions before 1.5.2. The get_question AJAX action does not validate/escape the question_id parameter, enabling unauthenticated SQL injection. Consequences can include unauthorized access to data and potential compromise of the database. Rem...

9.8CVSS9.8AI score0.86896EPSS
In wildExploits7References2Affected Software1
Rows per page
Query Builder