3 matches found
CVE-2024-13532
creationtimestamp| type| source ---|---|--- 2025-02-12 11:36:28+00:00| seen| https://infosec.exchange/users/cve/statuses/113990709281718324 2025-02-12 12:16:04+00:00| seen| https://bsky.app/profile/cve-notifications.bsky.social/post/3lhy5nvolko2h 2025-02-12 13:10:37+00:00| seen|...
CVE-2024-13532 Small Package Quotes – Purolator Edition <= 3.6.4 - Unauthenticated SQL Injection
The Small Package Quotes – Purolator Edition plugin for WordPress is vulnerable to SQL Injection via the 'editid' and 'dropshipeditid' parameters in all versions up to, and including, 3.6.4 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the...
CVE-2024-13532
CVE-2024-13532 affects the Small Package Quotes – Purolator Edition WordPress plugin (versions