4 matches found
CVE-2024-32098
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Page Visit Counter Advanced Page Visit Counter.This issue affects Advanced Page Visit Counter: from n/a through 8.0.6...
CVE-2024-32098 WordPress Advanced Page Visit Counter plugin <= 8.0.6 - Auth. SQL Injection (SQLi) vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Page Visit Counter Advanced Page Visit Counter.This issue affects Advanced Page Visit Counter: from n/a through 8.0.6...
CVE-2024-32098
CVE-2024-32098 describes an SQL Injection in the WordPress plugin Advanced Page Visit Counter (affected versions: up to 8.0.6). The root cause is improper neutralization of SQL elements in the plugin, enabling an attacker with Administrator+ privileges (per the document) to influence SQL queries....
WordPress Advanced Page Visit Counter Plugin <= 8.0.6 is vulnerable to SQL Injection
Software Advanced Page Visit Counter Type Plugin Vulnerable versions = 8.0.6 Fixed in N/A OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-32098 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 091c37cd4699 Credits Le Ngoc Anh Required privilege...