Lucene search
+L

5 matches found

0day.today
0day.today
added 2025/02/20 12:0 a.m.196 views

LTL Freight Quotes – ABF Freight Edition 3.3.7 SQL Injection Vulnerability

CVE-2024-13485 LTL Freight Quotes – ABF Freight Edition = 5.6 AND error-bas...

7.5CVSS6.8AI score0.00956EPSS
Exploits3
Packet Storm
Packet Storm
added 2025/02/20 12:0 a.m.273 views

LTL Freight Quotes – ABF Freight Edition 3.3.7 SQL Injection

LTL Freight Quotes – ABF Freight Edition versions 3.3.7 and below suffer from an unauthenticated remote SQL injection vulnerability. CVE-2024-13485 LTL Freight Quotes – ABF Freight Edition = 3.3.7 - Unauthenticated SQL Injection Description The LTL Freight Quotes – ABF Freight Edition plugin for...

7.5CVSS8.2AI score0.00956EPSS
Exploits3
Circl
Circl
added 2025/02/19 12:15 p.m.12 views

CVE-2024-13485

creationtimestamp| type| source ---|---|--- 2025-02-19 12:15:51+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lijqvy3w2z2o 2025-02-19 14:16:30+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lijxnktump2e 2025-02-19 16:14:01+00:00| seen|...

7.5CVSS7.8AI score0.00956EPSS
Exploits3References5
NVD
NVD
added 2025/02/19 12:15 p.m.18 views

CVE-2024-13485

The LTL Freight Quotes – ABF Freight Edition plugin for WordPress is vulnerable to SQL Injection via the 'editid' and 'dropshipeditid' parameters in all versions up to, and including, 3.3.7 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...

7.5CVSS0.00956EPSS
Exploits3References2
CVE
CVE
added 2025/02/19 11:10 a.m.45 views

CVE-2024-13485

CVE-2024-13485 affects the WordPress plugin “LTL Freight Quotes – ABF Freight Edition” up to version 3.3.7. The vulnerability is an unauthenticated SQL injection via the parameters “edit_id” and “dropship_edit_id” caused by insufficient escaping and unsafe query construction, enabling attackers t...

7.5CVSS7.6AI score0.00956EPSS
Exploits3References2Affected Software1
Rows per page
Query Builder