Lucene search
K

4 matches found

OSV
OSV
added 2024/06/13 6:15 a.m.1 views

CVE-2024-4145

The Search & Replace WordPress plugin before 3.2.2 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks such as within a multi-site network...

7.2CVSS5.8AI score0.00444EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2024/06/13 6:0 a.m.14 views

CVE-2024-4145 Search & Replace < 3.2.2 - Admin+ SQL injection

The Search & Replace WordPress plugin before 3.2.2 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks such as within a multi-site network...

7.5AI score0.00444EPSS
Exploits2References1
Cvelist
Cvelist
added 2024/06/13 6:0 a.m.34 views

CVE-2024-4145 Search & Replace < 3.2.2 - Admin+ SQL injection

The Search & Replace WordPress plugin before 3.2.2 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks such as within a multi-site network...

0.00444EPSS
Exploits2References1
Patchstack
Patchstack
added 2024/06/13 12:0 a.m.19 views

WordPress Search & Replace Plugin < 3.2.2 is vulnerable to SQL Injection

Software Search & Replace Type Plugin Vulnerable versions 3.2.2 Fixed in 3.2.2 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-4145 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 279ec626c422 Credits Krugov Artyom Required privilege Administrator...

7.2CVSS6.8AI score0.00444EPSS
Exploits2References4Affected Software1
Rows per page
Query Builder