Lucene search
+L

5 matches found

Nuclei
Nuclei
added 18 hours ago121 views

Business Directory Plugin <= 6.4.2 - SQL Injection

The Business Directory Plugin Easy Listing Directories for WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the ‘listingfields’ parameter in all versions up to, and including, 6.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient...

9.8CVSS5.8AI score0.10272EPSS
Exploits1References4
OSV
OSV
added 2024/05/22 6:15 a.m.3 views

CVE-2024-4443

The Business Directory Plugin – Easy Listing Directories for WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the ‘listingfields’ parameter in all versions up to, and including, 6.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient...

7.5CVSS5.9AI score0.10272EPSS
Exploits1References3
NVD
NVD
added 2024/05/22 6:15 a.m.43 views

CVE-2024-4443

The Business Directory Plugin – Easy Listing Directories for WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the ‘listingfields’ parameter in all versions up to, and including, 6.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient...

9.8CVSS9.7AI score0.10272EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/05/22 5:32 a.m.49 views

CVE-2024-4443 Business Directory Plugin – Easy Listing Directories for WordPress <= 6.4.2 - Unauthenticated SQL Injection via listingfields Parameter

The Business Directory Plugin – Easy Listing Directories for WordPress plugin for WordPress is vulnerable to time-based SQL Injection via the ‘listingfields’ parameter in all versions up to, and including, 6.4.2 due to insufficient escaping on the user supplied parameter and lack of sufficient...

9.8CVSS9.7AI score0.10272EPSS
Exploits1References3
CVE
CVE
added 2024/05/22 5:32 a.m.108 views

CVE-2024-4443

CVE-2024-4443 affects the WordPress plugin “Business Directory Plugin – Easy Listing Directories for WordPress” up to version 6.4.2. The vulnerability is a time-based SQL Injection in the listingfields parameter caused by insufficient escaping and poor query preparation, allowing unauthenticated ...

9.8CVSS9.7AI score0.10272EPSS
In wildExploits1References3Affected Software1
Rows per page
Query Builder