4 matches found
CVE-2024-30488
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Katie Zotpress zotpress.This issue affects Zotpress: from n/a through = 7.3.7...
CVE-2024-30488
CVE-2024-30488 is tied to the Zotpress WordPress plugin (Zotpress, affected: n/a through 7.3.7) and is characterized as an SQL Injection. The linked Red Hat/WordFence entries confirm the issue exists as an authenticated (Contributor+) SQL injection against Zotpress and note a patched status, indi...
CVE-2024-30488 WordPress Zotpress plugin <= 7.3.7 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Katie Zotpress zotpress.This issue affects Zotpress: from n/a through = 7.3.7...
WordPress Zotpress Plugin <= 7.3.7 is vulnerable to SQL Injection
Software Zotpress Type Plugin Vulnerable versions = 7.3.7 Fixed in 7.3.8 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-30488 Patch priority Low CVSS severity Low 8.5 Developer Katie Seaborn PSID c37f5e1dca19 Credits LVT-tholv2k Required privilege Contributor Published 28...