Lucene search
K

4 matches found

Vulnrichment
Vulnrichment
added 2025/11/17 7:2 a.m.2 views

CVE-2025-13268 Dromara dataCompare JDBC URL DbconfigServiceImpl.java DbConfig injection

A flaw has been found in Dromara dataCompare up to 1.0.1. The affected element is the function DbConfig of the file src/main/java/com/vince/xq/project/system/dbconfig/service/DbconfigServiceImpl.java of the component JDBC URL Handler. Executing manipulation can lead to injection. The attack can b...

6.5CVSS6.3AI score0.00242EPSS
Exploits0References4
NVD
NVD
added 2024/01/17 5:15 a.m.25 views

CVE-2024-0405

The Burst Statistics – Privacy-Friendly Analytics for WordPress plugin, version 1.5.3, is vulnerable to Post-Authenticated SQL Injection via multiple JSON parameters in the /wp-json/burst/v1/data/compare endpoint. Affected parameters include 'browser', 'device', 'pageid', 'pageurl', 'platform', a...

7.2CVSS7.1AI score0.00622EPSS
Exploits0References4
Cvelist
Cvelist
added 2024/01/17 4:32 a.m.36 views

CVE-2024-0405 Burst Statistics Really Simple Plugins <= 1.5.3 - Authenticated (Editor+) SQL Injection

The Burst Statistics – Privacy-Friendly Analytics for WordPress plugin, version 1.5.3, is vulnerable to Post-Authenticated SQL Injection via multiple JSON parameters in the /wp-json/burst/v1/data/compare endpoint. Affected parameters include 'browser', 'device', 'pageid', 'pageurl', 'platform', a...

7.2CVSS7.4AI score0.00622EPSS
Exploits0References4
CNNVD
CNNVD
added 2024/01/17 12:0 a.m.4 views

WordPress Plugin Burst Statistics Security Vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...

7.2CVSS7.9AI score0.00622EPSS
Exploits0References6
Rows per page
Query Builder