Lucene search
+L

4 matches found

NVD
NVD
added 2021/11/08 6:15 p.m.20 views

CVE-2021-24829

The Visitor Traffic Real Time Statistics WordPress plugin before 3.9 does not validate and escape user input passed to the todaytrafficindex AJAX action available to any authenticated users before using it in a SQL statement, leading to an SQL injection issue...

8.8CVSS0.01318EPSS
Exploits2References1
OSV
OSV
added 2021/11/08 6:15 p.m.3 views

CVE-2021-24829

The Visitor Traffic Real Time Statistics WordPress plugin before 3.9 does not validate and escape user input passed to the todaytrafficindex AJAX action available to any authenticated users before using it in a SQL statement, leading to an SQL injection issue...

8.8CVSS7.3AI score
Exploits0References1
CVE
CVE
added 2021/11/08 5:35 p.m.56 views

CVE-2021-24829

The CVE-2021-24829 issue affects the WordPress plugin Visitor Traffic Real Time Statistics (vulnerable = 3.9). The root cause is lack of validation/escaping of user input passed to the today_traffic_index AJAX action before it is used in an SQL statement, leading to SQL injection. Impact is explo...

8.8CVSS8.9AI score0.01318EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2021/11/08 5:35 p.m.22 views

CVE-2021-24829 Visitor Traffic Real Time Statistics < 3.9 - Subscriber+ SQL Injection

The Visitor Traffic Real Time Statistics WordPress plugin before 3.9 does not validate and escape user input passed to the todaytrafficindex AJAX action available to any authenticated users before using it in a SQL statement, leading to an SQL injection issue...

9.1AI score0.01318EPSS
Exploits2References1
Rows per page
Query Builder