Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 9:45 a.m.9 views

CVE-2024-30486

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Max Foundry Media Library Folders.This issue affects Media Library Folders: from n/a through 8.1.7...

8.8CVSS8.9AI score0.00577EPSS
Exploits0References1
NVD
NVD
added 2024/03/29 2:15 p.m.18 views

CVE-2024-30486

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Max Foundry Media Library Folders.This issue affects Media Library Folders: from n/a through 8.1.7...

8.8CVSS8.9AI score0.00577EPSS
Exploits0References1
CVE
CVE
added 2024/03/29 1:39 p.m.84 views

CVE-2024-30486

CVE-2024-30486 is an authenticated SQL injection in the WordPress plugin Media Library Folders (Media Library Folders: 8.1.7 and earlier). The issue arises from improper neutralization of input in SQL commands, enabling an attacker with Author+ or higher permissions to manipulate queries. The vul...

8.8CVSS8.9AI score0.00577EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/03/28 12:0 a.m.22 views

WordPress Media Library Folders Plugin <= 8.1.7 is vulnerable to SQL Injection

Software Media Library Folders Type Plugin Vulnerable versions = 8.1.7 Fixed in 8.1.8 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-30486 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 07c50fa94bf4 Credits Le Ngoc Anh Required privilege Author...

8.8CVSS6.8AI score0.00577EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder