4 matches found
CVE-2024-39653
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in E4J s.R.L. VikRentCar allows SQL Injection.This issue affects VikRentCar: from n/a through 1.4.0...
CVE-2024-39653
CVE-2024-39653 describes an unauthenticated SQL Injection in the WordPress VikRentCar Car Rental Management System plugin (<= 1.4.0). The vulnerability stems from improper neutralization of input elements in the plugin’s SQL queries, enabling an attacker to craft payloads that could compromise...
CVE-2024-39653 WordPress VikRentCar Car Rental Management System plugin <= 1.4.0 - SQL Injection vulnerability
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in E4J s.R.L. VikRentCar allows SQL Injection.This issue affects VikRentCar: from n/a through 1.4.0...
WordPress VikRentCar Plugin <= 1.4.0 is vulnerable to SQL Injection
Software VikRentCar Type Plugin Vulnerable versions = 1.4.0 Fixed in 1.4.1 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-39653 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID 3c514657eb13 Credits justakazh Required privilege Unauthenticated Publish...