Lucene search
+L

4 matches found

redhatcve
redhatcve
added 2025/02/05 5:57 a.m.4 views

CVE-2024-49246

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in anand23 Ajax Rating with Custom Login ajax-rating-with-custom-login allows SQL Injection.This issue affects Ajax Rating with Custom Login: from n/a through = 1.1...

9.3CVSS5.9AI score0.004EPSS
Exploits0References1
nvd
nvd
added 2024/10/17 6:15 p.m.15 views

CVE-2024-49246

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in anand23 Ajax Rating with Custom Login ajax-rating-with-custom-login allows SQL Injection.This issue affects Ajax Rating with Custom Login: from n/a through = 1.1...

9.3CVSS0.004EPSS
Exploits0References1
cve
cve
added 2024/10/17 5:31 p.m.48 views

CVE-2024-49246

CVE-2024-49246 describes an SQL Injection vulnerability in WordPress plugin Ajax Rating with Custom Login (versions up to 1.1). The issue arises from improper neutralization of special elements in an SQL command, enabling unauthenticated SQL injection. Public references in the connected documents...

9.3CVSS5.9AI score0.004EPSS
Exploits0References1
patchstack
patchstack
added 2024/10/14 12:0 a.m.7 views

WordPress Ajax Rating with Custom Login Plugin <= 1.1 is vulnerable to SQL Injection

Software Ajax Rating with Custom Login Type Plugin Vulnerable versions = 1.1 Fixed in N/A OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-49246 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID de8e18fe2e58 Credits stealthcopter Required privilege...

9.3CVSS6.8AI score0.004EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder