Lucene search
K

8 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-28414

Malicious code in bioql PyPI...

7.6CVSS8.6AI score0.00515EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 9:29 a.m.10 views

CVE-2024-30494

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in 沈唁 OSS Aliyun.This issue affects OSS Aliyun: from n/a through 1.4.10...

7.6CVSS8.9AI score0.00515EPSS
Exploits0References1
WPVulnDB
WPVulnDB
added 2024/04/04 12:0 a.m.16 views

OSS Aliyun < 1.4.11 - Authenticated (Administrator+) SQL Injection

Description The OSS Aliyun plugin for WordPress is vulnerable to SQL Injection in versions up to, and including, 1.4.10 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This makes it possible for authenticated attackers, wit...

7.6CVSS7.3AI score0.00515EPSS
Exploits0References1Affected Software1
NVD
NVD
added 2024/03/29 2:15 p.m.22 views

CVE-2024-30494

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in 沈唁 OSS Aliyun.This issue affects OSS Aliyun: from n/a through 1.4.10...

7.6CVSS7.9AI score0.00515EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/03/29 1:55 p.m.23 views

CVE-2024-30494 WordPress OSS Aliyun plugin <= 1.4.10 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in 沈唁 OSS Aliyun.This issue affects OSS Aliyun: from n/a through 1.4.10...

7.6CVSS8.1AI score0.00515EPSS
Exploits0References1
CVE
CVE
added 2024/03/29 1:55 p.m.66 views

CVE-2024-30494

CVE-2024-30494 is an SQL injection in the OSS Aliyun WordPress plugin (up to version 1.4.10). The vulnerability is due to improper neutralization of input in the plugin’s SQL commands and is labeled as Authenticated (Administrator+) SQL Injection . Public references in the supplied documents indi...

7.6CVSS8.9AI score0.00515EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/03/29 1:55 p.m.18 views

CVE-2024-30494 WordPress OSS Aliyun plugin <= 1.4.10 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in 沈唁 OSS Aliyun.This issue affects OSS Aliyun: from n/a through 1.4.10...

7.6CVSS8.9AI score0.00515EPSS
Exploits0References1
Patchstack
Patchstack
added 2024/03/28 12:0 a.m.19 views

WordPress OSS Aliyun Plugin <= 1.4.10 is vulnerable to SQL Injection

Software OSS Aliyun Type Plugin Vulnerable versions = 1.4.10 Fixed in 1.4.11 OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-30494 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID f4acc3b1af32 Credits Majed Refaea Required privilege Administrator...

7.6CVSS6.8AI score0.00515EPSS
Exploits0References2Affected Software1
Rows per page
Query Builder