Lucene search
K

16 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-34492

Malicious code in bioql PyPI...

7.6CVSS6.4AI score0.01094EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/02/05 2:43 a.m.8 views

CVE-2024-33911

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Weblizar School Management Pro.This issue affects School Management Pro: from n/a through 10.3.4...

7.6CVSS5.6AI score0.01094EPSS
Exploits1References1
NVD
NVD
added 2024/05/02 11:15 a.m.14 views

CVE-2024-33911

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Weblizar School Management Pro.This issue affects School Management Pro: from n/a through 10.3.4...

7.6CVSS8.1AI score0.01094EPSS
Exploits1References1
OSV
OSV
added 2024/05/02 11:15 a.m.6 views

CVE-2024-33911

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Weblizar School Management Pro.This issue affects School Management Pro: from n/a through 10.3.4...

7.2CVSS5.8AI score0.01094EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/05/02 11:10 a.m.20 views

CVE-2024-33911 WordPress The School Management Pro plugin <= 10.3.4 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Weblizar School Management Pro.This issue affects School Management Pro: from n/a through 10.3.4...

7.6CVSS7.9AI score0.01094EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/05/02 11:10 a.m.26 views

CVE-2024-33911 WordPress The School Management Pro plugin <= 10.3.4 - SQL Injection vulnerability

Improper Neutralization of Special Elements used in an SQL Command 'SQL Injection' vulnerability in Weblizar School Management Pro.This issue affects School Management Pro: from n/a through 10.3.4...

7.6CVSS8.3AI score0.01094EPSS
Exploits1References1
CVE
CVE
added 2024/05/02 11:10 a.m.71 views

CVE-2024-33911

CVE-2024-33911 concerns Weblizar School Management Pro (School Management Pro

7.6CVSS5.6AI score0.01094EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2024/05/02 12:0 a.m.6 views

PT-2024-25544 · Weblizar · Weblizar School Management Pro

Name of the Vulnerable Software and Affected Versions: Weblizar School Management Pro versions through 10.3.4 Description: The issue is related to an SQL Injection vulnerability due to improper neutralization of special elements used in an SQL command. This allows for potential exploitation...

7.6CVSS7.2AI score0.01094EPSS
Exploits1References9
CNNVD
CNNVD
added 2024/05/02 12:0 a.m.5 views

WordPress plugin School Management Pro SQL注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL.WordPress plugin is an application plugin. A SQL injection vulnerabili...

7.6CVSS7.7AI score0.01094EPSS
Exploits1References2
Patchstack
Patchstack
added 2024/04/29 1:49 p.m.7 views

WordPress The School Management Pro plugin <= 10.3.4 - SQL Injection vulnerability

SQL Injection vulnerability discovered by Ivan Spiridonov Patchstack Alliance in WordPress Plugin School Management Pro versions = 10.3.4...

7.6CVSS8.1AI score0.01094EPSS
Exploits1Affected Software1
Patchstack
Patchstack
added 2024/04/29 12:0 a.m.13 views

WordPress School Management Pro Plugin <= 10.3.4 is vulnerable to SQL Injection

Software School Management Pro Type Plugin Vulnerable versions = 10.3.4 Fixed in N/A OWASP Top 10 A3: Injection Classification SQL Injection CVE CVE-2024-33911 Patch priority Low CVSS severity Low 7.6 Developer Claim ownership PSID 78a8a05cb12b Credits Ivan Spiridonov Required privilege School...

7.6CVSS6.8AI score0.01094EPSS
Exploits1References1Affected Software1
Saint
Saint
added 2022/08/12 12:0 a.m.222 views

Weblizar School Management Pro plugin backdoor

Added: 08/12/2022 CVE: CVE-2022-1609 Background Weblizar School Management is a WordPress plugin for management of school operations. Problem The license checking code in School Management Pro contains a backdoor which allows remote attackers to execute arbitrary commands. Resolution Upgrade to t...

9.8CVSS9.8AI score0.64321EPSS
Exploits6
BDU FSTEC
BDU FSTEC
added 2022/07/06 12:0 a.m.3 views

The vulnerability of the REST API implementation of the plugin for managing a school and its objects in the School Management Pro system, a content management system for WordPress websites, allows a malicious individual to execute arbitrary PHP code and gain full control over the application.

The vulnerability of the REST API implementation of the School Management Pro plugin for managing schools and their objects in the WordPress content management system is related to improper code generation. Exploiting this vulnerability allows an attacker to execute arbitrary PHP code and gain fu...

10CVSS8.4AI score0.64321EPSS
Exploits6References9
CNNVD
CNNVD
added 2022/05/23 12:0 a.m.5 views

WordPress plugin School Management Pro 代码注入漏洞

WordPress and WordPress plugin are both products of the WordPress Foundation.WordPress is a blogging platform developed using the PHP language. The platform supports personal blog sites on PHP and MySQL servers.WordPress plugin is an application plugin. A code injection vulnerability exists in th...

9.8CVSS9.2AI score0.64321EPSS
Exploits6References3
The Hacker News
The Hacker News
added 2022/05/21 5:11 a.m.61 views

Researchers Find Backdoor in School Management Plugin for WordPress

Multiple versions of a WordPress plugin by the name of "School Management Pro" harbored a backdoor that could grant an adversary complete control over vulnerable websites. The issue, spotted in premium versions before 9.9.7, has been assigned the CVE identifier CVE-2022-1609 and is rated 10 out o...

1.1AI score0.64321EPSS
Exploits6
Patchstack
Patchstack
added 2022/05/20 12:0 a.m.84 views

WordPress School Management Pro premium plugin < 9.9.7 - Unauthenticated Remote Code Execution (RCE) via REST API

Unauthenticated Remote Code Execution RCE via REST API discovered by Jetpack Scan Team and WordPress elevated support team in WordPress School Management Pro premium plugin versions 9.9.7. Solution Update the WordPress School Management Pro premium plugin to the latest available version at least...

4.8AI score0.64321EPSS
Exploits6References3Affected Software1
Rows per page
Query Builder