3 matches found
CVE-2024-53807
Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in brandtoss WP Mailster wp-mailster allows Blind SQL Injection.This issue affects WP Mailster: from n/a through = 1.8.16.0...
CVE-2024-53807
creationtimestamp| type| source ---|---|--- 2024-12-06 14:05:29+00:00| seen| https://infosec.exchange/users/cve/statuses/113606258127957108...
CVE-2024-53807
WP Mailster (Brandtoss) CVE-2024-53807 is a SQL Injection vulnerability affecting WP Mailster versions up to 1.8.16.0. Public docs indicate an authenticated (Contributor+) SQL injection via the orderby parameter, described as Blind SQL Injection with high impact. Patch status in the CVE details i...