4 matches found
CVE-2024-30504
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WP Travel Engine.This issue affects WP Travel Engine: from n/a through 5.7.9...
CVE-2024-30504 WordPress WP Travel Engine plugin <= 5.7.9 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in WP Travel Engine.This issue affects WP Travel Engine: from n/a through 5.7.9...
CVE-2024-30504
CVE-2024-30504 is an SQL injection vulnerability in WP Travel Engine (WordPress plugin) caused by improper neutralization of inputs. Affected: WP Travel Engine versions up to 5.7.9. Status: patched in the Wordfence vulnerability entry; no exploitation details are provided in the connected documen...
WordPress WP Travel Engine Plugin <= 5.7.9 is vulnerable to SQL Injection
Software WP Travel Engine Type Plugin Vulnerable versions = 5.7.9 Fixed in 5.8.0 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-30504 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 80130919606b Credits Yudistira Arya Required privilege Administrator...