3 matches found
CVE-2024-2970
The CVE CVE-2024-2970 affects the News Wall WordPress plugin (all versions up to 1.1.0). It is a Cross-Site Request Forgery vulnerability caused by missing or incorrect nonce validation in the nwap_newslist_page() function. This enables unauthenticated attackers to update the plugin’s settings an...
CVE-2022-29669
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/lists/zhuan...
CVE-2022-29669
CSCMS Music Portal System v4.2 was discovered to contain a SQL injection vulnerability via the id parameter at /admin.php/news/admin/lists/zhuan...