Lucene search
+L

8 matches found

Packet Storm
Packet Storm
added 2023/07/31 12:0 a.m.438 views

WordPress AN_Gradebook 5.0.1 SQL Injection

!/usr/bin/python3 Exploit Title: WordPress Plugin ANGradebook = 5.0.1 - Subscriber+ SQLi Date: 2023-07-26 Exploit Author: Lukas Kinneberg Github: https://github.com/lukinneberg/CVE-2023-2636 Vendor Homepage: https://wordpress.org/plugins/an-gradebook/ Software Link:...

8.8CVSS7.1AI score0.0464EPSS
Exploits5
Circl
Circl
added 2023/07/28 12:0 a.m.28 views

CVE-2023-2636

creationtimestamp| type| source ---|---|--- 2023-07-28 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/51632 2023-08-08 13:26:31+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/8812...

8.8CVSS8.6AI score0.0464EPSS
Exploits5References2
0day.today
0day.today
added 2023/07/28 12:0 a.m.221 views

WordPress AN_Gradebook 5.0.1 Plugin - SQL injection Vulnerability

!/usr/bin/python3 Exploit Title: WordPress Plugin ANGradebook = 5.0.1 - Subscriber+ SQLi Date: 2023-07-26 Exploit Author: Lukas Kinneberg Github: https://github.com/lukinneberg/CVE-2023-2636 Vendor Homepage: https://wordpress.org/plugins/an-gradebook/ Software Link:...

8.8CVSS7.1AI score0.0464EPSS
Exploits5
NVD
NVD
added 2023/07/17 2:15 p.m.21 views

CVE-2023-2636

The ANGradeBook WordPress plugin through 5.0.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber...

8.8CVSS0.0464EPSS
Exploits5References2
Cvelist
Cvelist
added 2023/07/17 1:29 p.m.33 views

CVE-2023-2636 AN_GradeBook <= 5.0.1 - Subscriber+ SQLi

The ANGradeBook WordPress plugin through 5.0.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber...

9.2AI score0.0464EPSS
Exploits5References2
Vulnrichment
Vulnrichment
added 2023/07/17 1:29 p.m.14 views

CVE-2023-2636 AN_GradeBook <= 5.0.1 - Subscriber+ SQLi

The ANGradeBook WordPress plugin through 5.0.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as subscriber...

7.4AI score0.0464EPSS
Exploits5References2
CVE
CVE
added 2023/07/17 1:29 p.m.82 views

CVE-2023-2636

The CVE-2023-2636 entry concerns the WordPress plugin AN_GradeBook (up to version 5.0.1). The vulnerability arises because a parameter is not properly sanitized/escaped before being used in a SQL statement, enabling SQL injection. The impact is a potentially high-severity breach with the attack s...

8.8CVSS8.9AI score0.0464EPSS
Exploits5References2Affected Software1
Patchstack
Patchstack
added 2023/06/26 12:0 a.m.14 views

WordPress AN_GradeBook Plugin <= 5.0.1 is vulnerable to SQL Injection

Software ANGradeBook Type Plugin Vulnerable versions = 5.0.1 Fixed in N/A OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-2636 Patch priority High CVSS severity High 8.5 Developer Claim ownership PSID 3bf8fa61c014 Credits Lukas Kinneberg Required privilege Subscriber Publishe...

8.8CVSS6.7AI score0.0464EPSS
Exploits5References2Affected Software1
Rows per page
Query Builder