Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/02/05 4:34 a.m.5 views

CVE-2024-9130

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order’ parameter in all versions up to, and including, 3.16.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existin...

7.2CVSS7.2AI score0.00684EPSS
Exploits0References1
NVD
NVD
added 2024/09/27 6:15 a.m.17 views

CVE-2024-9130

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order’ parameter in all versions up to, and including, 3.16.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existin...

7.2CVSS0.00684EPSS
Exploits0References6
OSV
OSV
added 2024/09/27 6:15 a.m.3 views

CVE-2024-9130

The GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress is vulnerable to time-based SQL Injection via the ‘order’ parameter in all versions up to, and including, 3.16.1 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existin...

7.2CVSS5.8AI score0.00684EPSS
Exploits0References6
Positive Technologies
Positive Technologies
added 2024/09/26 12:0 a.m.3 views

PT-2024-39450 · WordPress · Givewp

Name of the Vulnerable Software and Affected Versions: GiveWP – Donation Plugin and Fundraising Platform plugin for WordPress versions up to, and including, 3.16.1 Description: The issue is related to time-based SQL Injection via the order parameter due to insufficient escaping on the user-suppli...

7.2CVSS7.7AI score0.00684EPSS
Exploits0References13
Rows per page
Query Builder