Lucene search
+L

4 matches found

NVD
NVD
added 2023/12/20 6:15 p.m.22 views

CVE-2023-26525

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in weDevs Dokan – Best WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy.This issue affects Dokan – Best WooCommerce Multivendor Marketplace Solution – Build Your Own...

8.1CVSS0.0057EPSS
Exploits0References1
CVE
CVE
added 2023/12/20 5:27 p.m.43 views

CVE-2023-26525

CVE-2023-26525 concerns the WordPress Dokan plugin (Best WooCommerce Multivendor Marketplace) with an SQL Injection vulnerability in versions up to and including 3.7.12. The underlying issue is improper neutralization of input in SQL commands, exploitable by an authenticated attacker with vendor ...

8.1CVSS8.2AI score0.0057EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2023/12/20 5:27 p.m.4 views

CVE-2023-26525 WordPress Dokan Plugin <= 3.7.12 is vulnerable to SQL Injection

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in weDevs Dokan – Best WooCommerce Multivendor Marketplace Solution – Build Your Own Amazon, eBay, Etsy.This issue affects Dokan – Best WooCommerce Multivendor Marketplace Solution – Build Your Own...

7.1CVSS7.2AI score0.0057EPSS
Exploits0References4
Patchstack
Patchstack
added 2023/03/02 12:0 a.m.10 views

WordPress Dokan Plugin <= 3.7.12 is vulnerable to SQL Injection

Software Dokan Type Plugin Vulnerable versions = 3.7.12 Fixed in 3.7.13 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2023-26525 Patch priority Low CVSS severity Low 7.1 Developer Claim ownership PSID 3c9e33e0d441 Credits Rafie Muhammad Patchstack Required privilege Vendor...

8.1CVSS7.2AI score0.0057EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder