Lucene search
+L

5 matches found

NVD
NVD
added 2024/04/24 8:15 a.m.15 views

CVE-2024-32710

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Plechev Andrey WP-Recall.This issue affects WP-Recall: from n/a through 16.26.5...

8.5CVSS8.9AI score0.00601EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/04/24 8:2 a.m.14 views

CVE-2024-32710 WordPress WP-Recall plugin <= 16.26.5 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Plechev Andrey WP-Recall.This issue affects WP-Recall: from n/a through 16.26.5...

8.5CVSS7.7AI score0.00601EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/24 8:2 a.m.21 views

CVE-2024-32710 WordPress WP-Recall plugin <= 16.26.5 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Plechev Andrey WP-Recall.This issue affects WP-Recall: from n/a through 16.26.5...

8.5CVSS9AI score0.00601EPSS
Exploits0References1
CVE
CVE
added 2024/04/24 8:2 a.m.54 views

CVE-2024-32710

CVE-2024-32710 describes an unauthenticated SQL Injection in the WP-Recall plugin for WordPress (WP-Recall) up to version 16.26.5, caused by improper neutralization of SQL elements. The description and Red Hat advisory confirm the issue and indicate the affected product/version range is WP-Recall

8.5CVSS5.6AI score0.00601EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/04/22 12:0 a.m.7 views

WordPress WP-Recall Plugin <= 16.26.5 is vulnerable to SQL Injection

Software WP-Recall Type Plugin Vulnerable versions = 16.26.5 Fixed in 16.26.6 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-32710 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID c2c2701e003d Credits LVT-tholv2k Required privilege Contributor Publishe...

8.5CVSS6.8AI score0.00601EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder