10 matches found
Opti Marketing <= 2.0.9 - SQL Injection
The Opti Marketing plugin for WordPress is vulnerable to SQL Injection in all versions up to, and including, 2.0.9 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for unauthenticated attackers to appe...
Opti Marketing Plugin for WordPress <= 2.0.9 SQL Injection
The WordPress Opti Marketing Plugin installed on the remote host is affected by an unauthenticated SQL injection vulnerability. Note that the scanner has not tested for these issues but has instead relied only on the application's self-reported version number. No source data...
CVE-2024-6928
The Opti Marketing WordPress plugin through 2.0.9 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...
CVE-2024-6928
The Opti Marketing WordPress plugin through 2.0.9 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...
CVE-2024-6928 Opti Marketing <= 2.0.9 - Unauthenticated SQLi
The Opti Marketing WordPress plugin through 2.0.9 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...
CVE-2024-6928 Opti Marketing <= 2.0.9 - Unauthenticated SQLi
The Opti Marketing WordPress plugin through 2.0.9 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection...
CVE-2024-6928
CVE-2024-6928 concerns unauthenticated SQL injection in the Opti Marketing WordPress plugin (≤ 2.0.9) caused by insufficient escaping on a user-supplied parameter used in a SQL statement via an AJAX action. Public reports (NVD, RH, Wordfence vulnerability entries) describe that unauthenticated at...
WordPress plugin Opti Marketing 安全漏洞
WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A security vulnerability exists in WordPres...
WordPress Opti Marketing plugin <= 2.0.9 - Unauthenticated SQLi vulnerability
Unauthenticated SQLi vulnerability discovered by Project Black in WordPress Plugin Opti Marketing versions = 2.0.9...
WordPress Opti Marketing Plugin <= 2.0.9 is vulnerable to SQL Injection
Software Opti Marketing Type Plugin Vulnerable versions = 2.0.9 Fixed in N/A OWASP Top 10 A1: Injection Classification SQL Injection CVE CVE-2024-6928 Patch priority High CVSS severity High 9.3 Developer Claim ownership PSID 20bcbe97a70a Credits Project Black Required privilege Unauthenticated...