Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 10:7 a.m.18 views

CVE-2024-3293

The rtMedia for WordPress, BuddyPress and bbPress plugin for WordPress is vulnerable to blind SQL Injection via the rtmediagallery shortcode in all versions up to, and including, 4.6.18 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing...

8.8CVSS7.2AI score0.01405EPSS
Exploits1References1
NVD
NVD
added 2024/04/23 2:15 a.m.26 views

CVE-2024-3293

The rtMedia for WordPress, BuddyPress and bbPress plugin for WordPress is vulnerable to blind SQL Injection via the rtmediagallery shortcode in all versions up to, and including, 4.6.18 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing...

8.8CVSS8.7AI score0.01405EPSS
Exploits1References2
Cvelist
Cvelist
added 2024/04/23 1:58 a.m.33 views

CVE-2024-3293 rtMedia for WordPress, BuddyPress and bbPress <= 4.6.18 - Authenticated (Contributor+) SQL Injection via rtmedia_gallery Shortcode

The rtMedia for WordPress, BuddyPress and bbPress plugin for WordPress is vulnerable to blind SQL Injection via the rtmediagallery shortcode in all versions up to, and including, 4.6.18 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing...

8.8CVSS8.9AI score0.01405EPSS
Exploits1References2
Patchstack
Patchstack
added 2024/04/23 12:0 a.m.21 views

WordPress rtMedia for WordPress, BuddyPress and bbPress Plugin <= 4.6.18 is vulnerable to SQL Injection

Software rtMedia for WordPress, BuddyPress and bbPress Type Plugin Vulnerable versions = 4.6.18 Fixed in 4.6.19 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-3293 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 7b7bd27ebebe Credits Krzysztof Zając...

8.8CVSS6.8AI score0.01405EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder