Lucene search
K

11 matches found

Nuclei
Nuclei
added 7 hours ago33 views

WordPress Paytm Donation <=1.3.2 - Authenticated SQL Injection

WordPress Paytm Donation plugin through 1.3.2 is susceptible to authenticated SQL injection. The plugin does not sanitize, validate, or escape the id GET parameter before using it in a SQL statement when deleting donations. An attacker can possibly obtain sensitive information, modify data, and/o...

7.2CVSS7.1AI score0.05691EPSS
Exploits2References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.2 views

EUVD-2023-32205

Malicious code in bioql PyPI...

7.1CVSS7.1AI score0.00382EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 7:22 p.m.5 views

CVE-2021-24554

The Paytm – Donation Plugin WordPress plugin through 1.3.2 does not sanitise, validate or escape the id GET parameter before using it in a SQL statement when deleting donations, leading to an authenticated SQL injection issue...

7.2CVSS7.3AI score0.05691EPSS
Exploits2References1
Vulnrichment
Vulnrichment
added 2025/01/31 8:24 a.m.6 views

CVE-2025-24635 WordPress Paytm – Donation Plugin plugin <= 2.3.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in Paytm Paytm Payment Donation allows Reflected XSS. This issue affects Paytm Payment Donation: from n/a through 2.3.1...

7.1CVSS7AI score0.00246EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/01/31 8:24 a.m.21 views

CVE-2025-24635 WordPress Paytm – Donation Plugin plugin <= 2.3.1 - Reflected Cross Site Scripting (XSS) vulnerability

Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in integrationdevpaytm Paytm Payment Donation paytm-donation allows Reflected XSS.This issue affects Paytm Payment Donation: from n/a through = 2.3.1...

7.1CVSS0.00246EPSS
Exploits0References1
Patchstack
Patchstack
added 2025/01/05 6:27 p.m.3 views

WordPress Paytm – Donation Plugin plugin <= 2.3.1 - Reflected Cross Site Scripting (XSS) vulnerability

Reflected Cross Site Scripting XSS vulnerability discovered by SOPROBRO in WordPress Plugin Paytm Payment Donation versions = 2.3.1...

7.1CVSS6.1AI score0.00246EPSS
Exploits0Affected Software1
OSV
OSV
added 2023/08/14 3:15 p.m.4 views

CVE-2023-28535

Unauth. Reflected Cross-Site Scripting XSS vulnerability in Paytm Paytm Payment Donation plugin = 2.2.0 versions...

6.1CVSS7.3AI score0.00382EPSS
Exploits0References1
CNNVD
CNNVD
added 2023/08/14 12:0 a.m.2 views

WordPress plugin paytm-donation cross-site scripting vulnerability

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A cross-site scripting...

7.1CVSS6AI score0.00382EPSS
Exploits0References2
OSV
OSV
added 2021/08/23 12:15 p.m.3 views

CVE-2021-24554

The Paytm – Donation Plugin WordPress plugin through 1.3.2 does not sanitise, validate or escape the id GET parameter before using it in a SQL statement when deleting donations, leading to an authenticated SQL injection issue...

7.2CVSS7.1AI score0.05691EPSS
Exploits2References2
CNNVD
CNNVD
added 2021/08/23 12:0 a.m.2 views

WordPress plugin SQL注入漏洞

WordPress is the Wordpress Foundation's set of blogging platform developed using the PHP language . The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an open source application plugin for WordPress. A SQL injection vulnerability exists in the WordPress plugin...

7.2CVSS7.4AI score0.05691EPSS
Exploits2References2
WPVulnDB
WPVulnDB
added 2021/07/24 12:0 a.m.18 views

Paytm - Donation Plugin <= 1.3.2 - Authenticated (admin+) SQL Injection

The plugin does not sanitise, validate or escape the id GET parameter before using it in a SQL statement when deleting donations, leading to an authenticated SQL injection issue PoC GET /wp-admin/admin.php?page=wppaytmdonation=delete=1%20AND%20SELECT%205581%20FROM%20SELECTSLEEP5Pjwy HTTP/1.1...

6.5CVSS1.6AI score0.05691EPSS
Exploits2References1Affected Software1
Rows per page
Query Builder