Lucene search
+L

5 matches found

NVD
NVD
added 2024/07/09 10:15 a.m.39 views

CVE-2024-37090

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in StylemixThemes Masterstudy Elementor Widgets, StylemixThemes Consulting Elementor Widgets.This issue affects Masterstudy Elementor Widgets: from n/a through 1.2.2; Consulting Elementor Widgets: fro...

8.8CVSS0.0053EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2024/07/09 9:14 a.m.12 views

CVE-2024-37090 SQL Injection vulnerability in multiple StylemixThemes premium themes

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in StylemixThemes Masterstudy Elementor Widgets, StylemixThemes Consulting Elementor Widgets.This issue affects Masterstudy Elementor Widgets: from n/a through 1.2.2; Consulting Elementor Widgets: fro...

8.5CVSS7.7AI score0.0053EPSS
Exploits0References2
Cvelist
Cvelist
added 2024/07/09 9:14 a.m.39 views

CVE-2024-37090 SQL Injection vulnerability in multiple StylemixThemes premium themes

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in StylemixThemes Masterstudy Elementor Widgets, StylemixThemes Consulting Elementor Widgets.This issue affects Masterstudy Elementor Widgets: from n/a through 1.2.2; Consulting Elementor Widgets: fro...

8.5CVSS0.0053EPSS
Exploits0References2
CVE
CVE
added 2024/07/09 9:14 a.m.56 views

CVE-2024-37090

CVE-2024-37090 is a SQL Injection vulnerability in StylemixThemes Masterstudy Elementor Widgets and Consulting Elementor Widgets. Exploitation involves improper neutralization of SQL elements, affecting Masterstudy Widgets up to 1.2.2 and Consulting Widgets up to 1.3.0. Wordfence and CVE records ...

8.8CVSS9.1AI score0.0053EPSS
Exploits0References2Affected Software2
Patchstack
Patchstack
added 2024/06/20 12:0 a.m.9 views

WordPress Consulting Elementor Widgets Plugin <= 1.3.0 is vulnerable to SQL Injection

Software Consulting Elementor Widgets Type Plugin Vulnerable versions = 1.3.0 Fixed in 1.3.1 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-37090 Patch priority Low CVSS severity Low 8.5 Developer Claim ownership PSID 6570f9049c30 Credits Rafie Muhammad Patchstack Required...

8.8CVSS6.8AI score0.0053EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder