Lucene search
+L

8 matches found

nuclei
nuclei
added yesterday119 views

WP Query Console <= 1.0 - Remote Code Execution

Improper Control of Generation of Code 'Code Injection' vulnerability in LUBUS WP Query Console allows Code Injection.This issue affects WP Query Console- from n/a through 1.0. id: CVE-2024-50498 info: name: WP Query Console = 1.0 - Remote Code Execution author: s4e-io severity: critical...

10CVSS7.2AI score0.5364EPSS
Exploits4References4
githubexploit
githubexploit
added 2026/01/22 8:29 p.m.203 views

Exploit for Code Injection in Lubus Wp_Query_Console

CVE-2024-50498 / 0-Click RCE Exploit - Author: Joshua Provost...

10CVSS6.4AI score0.5364EPSS
Exploits4
nvd
nvd
added 2024/10/28 12:15 p.m.36 views

CVE-2024-50498

Improper Control of Generation of Code 'Code Injection' vulnerability in Ajit Bohra WP Query Console wp-query-console allows Code Injection.This issue affects WP Query Console: from n/a through = 1.0...

10CVSS0.5364EPSS
Exploits4References2
attackerkb
attackerkb
added 2024/10/28 12:15 p.m.8 views

CVE-2024-50498

Improper Control of Generation of Code 'Code Injection' vulnerability in LUBUS WP Query Console allows Code Injection.This issue affects WP Query Console: from n/a through 1.0...

10CVSS5.4AI score0.5364EPSS
Exploits4References3
osv
osv
added 2024/10/28 12:15 p.m.6 views

CVE-2024-50498

Improper Control of Generation of Code 'Code Injection' vulnerability in LUBUS WP Query Console allows Code Injection.This issue affects WP Query Console: from n/a through 1.0...

9.8CVSS5.8AI score0.5364EPSS
Exploits4References2
vulnrichment
vulnrichment
added 2024/10/28 11:24 a.m.20 views

CVE-2024-50498 WordPress WP Query Console plugin <= 1.0 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Ajit Bohra WP Query Console wp-query-console allows Code Injection.This issue affects WP Query Console: from n/a through = 1.0...

10CVSS7.4AI score0.5364EPSS
Exploits4References1
cvelist
cvelist
added 2024/10/28 11:24 a.m.43 views

CVE-2024-50498 WordPress WP Query Console plugin <= 1.0 - Remote Code Execution (RCE) vulnerability

Improper Control of Generation of Code 'Code Injection' vulnerability in Ajit Bohra WP Query Console wp-query-console allows Code Injection.This issue affects WP Query Console: from n/a through = 1.0...

10CVSS0.5364EPSS
Exploits4References1
cve
cve
added 2024/10/28 11:24 a.m.120 views

CVE-2024-50498

Summary of CVE-2024-50498: The WordPress plugin WP Query Console ≤ 1.0 is vulnerable to an unauthenticated Remote Code Execution due to improper control of code generation, enabling arbitrary PHP execution via a crafted REST request (example: POST to /wp-json/wqc/v1/query with {"queryArgs":"phpin...

10CVSS7.4AI score0.5364EPSS
In wildExploits4References2Affected Software1
Rows per page
Query Builder