Lucene search
K

10 matches found

RedhatCVE
RedhatCVE
added 2025/11/25 4:54 a.m.10 views

CVE-2025-7402

The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘siteid’ parameter in all versions up to, and including, 4.95 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on t...

7.5CVSS6.8AI score0.00283EPSS
Exploits0References1
NVD
NVD
added 2025/11/24 5:16 a.m.5 views

CVE-2025-7402

The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘siteid’ parameter in all versions up to, and including, 4.95 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on t...

7.5CVSS0.00283EPSS
Exploits0References2
EUVD
EUVD
added 2025/11/24 4:36 a.m.4 views

EUVD-2025-198609

The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘siteid’ parameter in all versions up to, and including, 4.95 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on t...

7.5CVSS6.3AI score0.00283EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/24 4:36 a.m.10 views

CVE-2025-7402 Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager <= 4.95 - Unauthenticated SQL Injection via site_id

The Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager plugin for WordPress is vulnerable to time-based SQL Injection via the ‘siteid’ parameter in all versions up to, and including, 4.95 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on t...

7.5CVSS0.00283EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2025/11/24 12:0 a.m.7 views

PT-2025-47880

Name of the Vulnerable Software and Affected Versions Ads Pro Plugin - Multi-Purpose WordPress Advertising Manager versions prior to 4.95 Description The Ads Pro Plugin for WordPress is susceptible to time-based SQL Injection through the site id parameter. Insufficient input validation and query...

7.5CVSS7.3AI score0.00283EPSS
Exploits0References8
Positive Technologies
Positive Technologies
added 2023/09/05 12:0 a.m.15 views

PT-2023-4991 · Cacti +1 · Cacti +1

Name of the Vulnerable Software and Affected Versions: Cacti versions prior to 1.2.25 Description: An authenticated SQL injection issue was discovered in Cacti, an open source operational monitoring and fault management framework. This issue allows authenticated users to perform privilege...

9.8CVSS7.2AI score0.99826EPSS
Exploits136References217
CNNVD
CNNVD
added 2022/12/18 12:0 a.m.2 views

ctrlo lenio 安全漏洞

lenio is an open source facility management system from ctrlo. A security vulnerability exists in ctrlo lenio, which stems from an unknown function in its Ticket Handler component lib/Lenio.pm library that operates on the parameter siteid leads allowing an attacker to implement cross-site scripti...

6.1CVSS5.6AI score0.00385EPSS
Exploits0References3
CNVD
CNVD
added 2021/01/12 12:0 a.m.2 views

Cacti SQL Injection Vulnerability (CNVD-2021-02999)

Cacti is an open source, web-based network monitoring and mapping tool, a front-end application designed for the data logging tool RRDtool. A SQL injection vulnerability exists in datadebug.php in Cacti. An attacker can exploit this vulnerability to execute arbitrary SQL commands via the siteid...

8.8CVSS9.9AI score0.04599EPSS
Exploits1References1
OSV
OSV
added 2021/01/11 4:15 p.m.2 views

UBUNTU-CVE-2020-35701

An issue was discovered in Cacti 1.2.x through 1.2.16. A SQL injection vulnerability in datadebug.php allows remote authenticated attackers to execute arbitrary SQL commands via the siteid parameter. This can lead to remote code execution...

8.8CVSS7.8AI score0.04599EPSS
Exploits1References5
CNNVD
CNNVD
added 2021/01/11 12:0 a.m.7 views

Cacti SQL注入漏洞

Cacti is an open source, web-based network monitoring and mapping tool, a front-end application designed for the data logging tool RRDtool. A SQL injection vulnerability exists in datadebug.php in Cacti. An attacker can exploit this vulnerability to execute arbitrary SQL commands via the siteid...

8.8CVSS7.6AI score0.04599EPSS
Exploits1References9
Rows per page
Query Builder