Lucene search
K

4 matches found

NVD
NVD
added 2024/03/29 3:15 p.m.14 views

CVE-2024-30504

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WP Travel Engine.This issue affects WP Travel Engine: from n/a through 5.7.9...

7.6CVSS7.9AI score0.00574EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/29 2:9 p.m.25 views

CVE-2024-30504 WordPress WP Travel Engine plugin <= 5.7.9 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WP Travel Engine.This issue affects WP Travel Engine: from n/a through 5.7.9...

7.6CVSS8.1AI score0.00574EPSS
Exploits0References1
CVE
CVE
added 2024/03/29 2:9 p.m.61 views

CVE-2024-30504

CVE-2024-30504 is an SQL injection vulnerability in WP Travel Engine (WordPress plugin) caused by improper neutralization of inputs. Affected: WP Travel Engine versions up to 5.7.9. Status: patched in the Wordfence vulnerability entry; no exploitation details are provided in the connected documen...

7.6CVSS8.9AI score0.00574EPSS
Exploits0References1Affected Software1
Patchstack
Patchstack
added 2024/03/28 12:0 a.m.12 views

WordPress WP Travel Engine Plugin <= 5.7.9 is vulnerable to SQL Injection

Software WP Travel Engine Type Plugin Vulnerable versions = 5.7.9 Fixed in 5.8.0 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-30504 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 80130919606b Credits Yudistira Arya Required privilege Administrator...

7.6CVSS6.8AI score0.00574EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder