Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/23 6:33 a.m.8 views

CVE-2024-9186

The Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit WordPress plugin before 3.3.0 does not sanitize and escape the bwfan-track-id parameter before using it in a SQL statement, allowing unauthenticated users to perform SQL injection attacks...

8.6CVSS7.6AI score0.02241EPSS
Exploits1References1
Circl
Circl
added 2024/11/14 6:12 a.m.8 views

CVE-2024-9186

creationtimestamp| type| source ---|---|--- 2024-11-14 06:12:16+00:00| seen| https://infosec.exchange/users/cve/statuses/113479826497723963 2024-11-14 08:17:20+00:00| seen| https://t.me/cvedetector/10907 2024-11-28 01:31:01+00:00| confirmed|...

8.6CVSS4.8AI score0.02241EPSS
Exploits1References3
Vulnrichment
Vulnrichment
added 2024/11/14 6:0 a.m.21 views

CVE-2024-9186 Automation By Autonami < 3.3.0 - Unauthenticated SQLi

The Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit WordPress plugin before 3.3.0 does not sanitize and escape the bwfan-track-id parameter before using it in a SQL statement, allowing unauthenticated users to perform SQL injection attacks...

7.7AI score0.02241EPSS
Exploits1References1
Patchstack
Patchstack
added 2024/11/14 12:0 a.m.26 views

WordPress Automation By Autonami Plugin < 3.3.0 is vulnerable to SQL Injection

Software Automation By Autonami Type Plugin Vulnerable versions 3.3.0 Fixed in 3.3.0 OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-9186 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID 0bc9c96e6168 Credits y4ng0615 Required privilege Unauthenticated...

8.6CVSS6.9AI score0.02241EPSS
Exploits1References3Affected Software1
Rows per page
Query Builder