10 matches found
CVE-2025-7402
The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘siteid’ parameter in all versions up to, and including, 4.95 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on t...
CVE-2025-7402
The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘siteid’ parameter in all versions up to, and including, 4.95 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on t...
EUVD-2025-198609
The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘siteid’ parameter in all versions up to, and including, 4.95 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on t...
CVE-2025-7402 Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager <= 4.95 - Unauthenticated SQL Injection via site_id
The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘siteid’ parameter in all versions up to, and including, 4.95 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on t...
PT-2025-47880
Name of the Vulnerable Software and Affected Versions Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager versions prior to 4.95 Description The Ads Pro Plugin for WordPress is susceptible to time-based SQL Injection through the site id parameter. Insufficient input validation and query...
PT-2023-4991 · Cacti +1 · Cacti +1
Name of the Vulnerable Software and Affected Versions: Cacti versions prior to 1.2.25 Description: An authenticated SQL injection issue was discovered in Cacti, an open source operational monitoring and fault management framework. This issue allows authenticated users to perform privilege...
ctrlo lenio 安全漏洞
lenio is an open source facility management system from ctrlo. A security vulnerability exists in ctrlo lenio, which stems from an unknown function in its Ticket Handler component lib/Lenio.pm library that operates on the parameter siteid leads allowing an attacker to implement cross-site scripti...
Cacti SQL Injection Vulnerability (CNVD-2021-02999)
Cacti is an open source, web-based network monitoring and mapping tool, a front-end application designed for the data logging tool RRDtool. A SQL injection vulnerability exists in datadebug.php in Cacti. An attacker can exploit this vulnerability to execute arbitrary SQL commands via the siteid...
UBUNTU-CVE-2020-35701
An issue was discovered in Cacti 1.2.x through 1.2.16. A SQL injection vulnerability in datadebug.php allows remote authenticated attackers to execute arbitrary SQL commands via the siteid parameter. This can lead to remote code execution...
Cacti SQL注入漏洞
Cacti is an open source, web-based network monitoring and mapping tool, a front-end application designed for the data logging tool RRDtool. A SQL injection vulnerability exists in datadebug.php in Cacti. An attacker can exploit this vulnerability to execute arbitrary SQL commands via the siteid...