Lucene search
K

5 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 8:59 a.m.6 views

CVE-2024-1287

The pmpro-member-directory WordPress plugin before 1.2.6 does not prevent users with at least the contributor role from leaking other users' sensitive information, including password hashes via an SQLi vector...

6.5CVSS6.5AI score0.00523EPSS
Exploits1References1
Circl
Circl
added 2024/07/30 9:2 a.m.7 views

CVE-2024-1287

creationtimestamp| type| source ---|---|--- 2024-07-30 09:02:47+00:00| seen| https://t.me/cvedetector/1988...

6.5CVSS4.8AI score0.00523EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/07/30 6:0 a.m.14 views

CVE-2024-1287 Paid Memberships Pro - Member Directory Add On < 1.2.6 - Contributor+ Sensitive Information Disclosure via SQLi

The pmpro-member-directory WordPress plugin before 1.2.6 does not prevent users with at least the contributor role from leaking other users' sensitive information, including password hashes via an SQLi vector...

6.4AI score0.00523EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/07/30 6:0 a.m.23 views

CVE-2024-1287 Paid Memberships Pro - Member Directory Add On < 1.2.6 - Contributor+ Sensitive Information Disclosure via SQLi

The pmpro-member-directory WordPress plugin before 1.2.6 does not prevent users with at least the contributor role from leaking other users' sensitive information, including password hashes via an SQLi vector...

0.00523EPSS
Exploits1References1
Patchstack
Patchstack
added 2024/07/30 12:0 a.m.10 views

WordPress Paid Memberships Pro - Member Directory Add On Plugin < 1.2.6 is vulnerable to SQL Injection

Software Paid Memberships Pro - Member Directory Add On Type Plugin Vulnerable versions 1.2.6 Fixed in 1.2.6 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-1287 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 7039256f577b Credits Scott Kingsley Clark...

6.5CVSS6.9AI score0.00523EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder