Lucene search
K

1666 matches found

wpexploit
wpexploit
added 2021/10/07 12:0 a.m.183 views

Post Content XMLRPC <= 1.0 - Admin+ SQL Injections

The plugin does not sanitise or escape multiple GET/POST parameters before using them in SQL statements in the admin dashboard, leading to an authenticated SQL Injections https://example.com/wp-admin/admin.php?page=pcxaddsites&mode=add&id=1%20AND%20SELECT%207953%20FROM%20SELECTSLEEP5AgUn...

7.2CVSS1.4AI score0.01497EPSS
Exploits2References1
WPVulnDB
WPVulnDB
added 2021/10/07 12:0 a.m.20 views

Post Content XMLRPC <= 1.0 - Admin+ SQL Injections

The plugin does not sanitise or escape multiple GET/POST parameters before using them in SQL statements in the admin dashboard, leading to an authenticated SQL Injections PoC https://example.com/wp-admin/admin.php?page=pcxaddsites=add=1%20AND%20SELECT%207953%20FROM%20SELECTSLEEP5AgUn...

7.2CVSS0.8AI score0.01497EPSS
Exploits2References1Affected Software1
Cvelist
Cvelist
added 2021/09/20 10:6 a.m.24 views

CVE-2021-24741 Support Board < 3.3.4 - Multiple Unauthenticated SQL Injections

The Support Board WordPress plugin before 3.3.4 does not escape multiple POST parameters such as statuscode, department, userid, conversationid, conversationstatuscode, and recipientid before using them in SQL statements, leading to SQL injections which are exploitable by unauthenticated users...

10AI score0.05516EPSS
Exploits3References3
NVD
NVD
added 2021/09/13 6:15 p.m.10 views

CVE-2021-24727

The StopBadBots WordPress plugin before 6.60 did not validate or escape the order and orderby GET parameter in some of its admin dashboard pages, leading to Authenticated SQL Injections...

8.8CVSS0.01713EPSS
Exploits2References3
wpexploit
wpexploit
added 2021/09/03 12:0 a.m.156 views

Support Board < 3.3.4 - Multiple Unauthenticated SQL Injections

The plugin does not escape multiple POST parameters such as statuscode, department, userid, conversationid, conversationstatuscode, and recipientid before using them in SQL statements, leading to SQL injections which are exploitable by unauthenticated users. The login-cookie parameter is needed,...

9.8CVSS0.6AI score0.05516EPSS
Exploits3References2
WPVulnDB
WPVulnDB
added 2021/09/03 12:0 a.m.21 views

Support Board < 3.3.4 - Multiple Unauthenticated SQL Injections

The plugin does not escape multiple POST parameters such as statuscode, department, userid, conversationid, conversationstatuscode, and recipientid before using them in SQL statements, leading to SQL injections which are exploitable by unauthenticated users. PoC The login-cookie parameter is...

9.8CVSS1.5AI score0.05516EPSS
Exploits3References2Affected Software1
WPVulnDB
WPVulnDB
added 2021/08/24 12:0 a.m.15 views

SMTP Mail < 1.2.2 - Authenticated SQL Injections

The plugin does not properly validate or escape the order and orderby parameters before using them in SQL statements, leading to SQL Injections in the admin dashboard PoC...

0.5AI score
Exploits0Affected Software1
WPVulnDB
WPVulnDB
added 2021/08/18 12:0 a.m.29 views

BuddyPress < 9.1.1 - SQL Injections

The plugin was affected by SQL Injections via the BPNotificationsNotification::getorderbysql and BPInvitation::getorderbysql functions...

4.8AI score
Exploits0References2Affected Software1
WPVulnDB
WPVulnDB
added 2021/08/16 12:0 a.m.11 views

Email Artillery <= 4.1 - Multiple Authenticated SQL Injections

The plugin does not sanitise, validate or escape some user input before using it in SQL statements in the admin dashboard, leading to SQL Injections PoC https://example.com/wp-admin/admin.php?page=etmbu-all-posts=yesid=1%20AND%20SELECT%2042%20FROM%20SELECTSLEEP5aa...

Exploits0Affected Software1
wpexploit
wpexploit
added 2021/08/16 12:0 a.m.543 views

Email Artillery <= 4.1 - Multiple Authenticated SQL Injections

The plugin does not sanitise, validate or escape some user input before using it in SQL statements in the admin dashboard, leading to SQL Injections https://example.com/wp-admin/admin.php?page=etmbu-all-posts&s=yes&postid=1%20AND%20SELECT%2042%20FROM%20SELECTSLEEP5aa...

1.3AI score
Exploits0
wpexploit
wpexploit
added 2021/08/06 12:0 a.m.161 views

Block and Stop Bad Bots < 6.60 - Authenticated SQL Injections

The plugin did not validate or escape the order and orderby GET parameter in some of its admin dashboard pages, leading to Authenticated SQL Injections...

8.8CVSS2AI score0.01713EPSS
Exploits2References2
WPVulnDB
WPVulnDB
added 2021/08/06 12:0 a.m.19 views

Block and Stop Bad Bots < 6.60 - Authenticated SQL Injections

The plugin did not validate or escape the order and orderby GET parameter in some of its admin dashboard pages, leading to Authenticated SQL Injections PoC https://example.com/wp-admin/admin.php?page=sbbmy-custom-submenu-page=1+AND+%28SELECT+4242+FROM+%28SELECT%28SLEEP%285%29%29%29aaa%29=asc...

8.8CVSS0.6AI score0.01713EPSS
Exploits2References2Affected Software1
Cvelist
Cvelist
added 2021/08/02 10:32 a.m.17 views

CVE-2021-24459 Survey Maker < 1.5.6 - Authenticated Blind SQL Injections

The getresults and getitems functions in the Survey Maker WordPress plugin before 1.5.6 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the getresults DB calls, leading to SQL injection issues in the admin dashboard...

9.3AI score0.01362EPSS
Exploits2References1
Cvelist
Cvelist
added 2021/08/02 10:32 a.m.28 views

CVE-2021-24457 Portfolio Responsive Gallery < 1.1.8 - Authenticated Blind SQL Injections

The getportfolios and getportfolioattributes functions in the class-portfolio-responsive-gallery-list-table.php and class-portfolio-responsive-gallery-attributes-list-table.php files of the Portfolio Responsive Gallery WordPress plugin before 1.1.8 did not use whitelist or validate the orderby...

9.3AI score0.01373EPSS
Exploits2References1
Ivan 'd0znpp' Novikov
Ivan 'd0znpp' Novikov
added 2021/07/02 6:24 a.m.73 views

What is Web API Security❓ — Methods of Protection

What is Web API Security❓ — Methods of Protection Before stressing what web API security is, it is important to first explain what APIs are. What are APIs? Fully known as Application Programming Interface , API is a software middle person that allows your applications to talk with one another. It...

7.5AI score
Exploits0
WPVulnDB
WPVulnDB
added 2021/06/29 12:0 a.m.23 views

FAQ Builder < 1.3.6 - Authenticated Blind SQL Injections

The getfaqs function in the plugin did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the getresults DB calls, leading to SQL injection issues in the admin dashboard PoC SQLMAP: python sqlmap.py -r r.txt -p orderby --level 5 --risk 3 --dbms MySQL...

6.5CVSS0.01362EPSS
Exploits2Affected Software1
wpexploit
wpexploit
added 2021/06/29 12:0 a.m.810 views

Popup box < 2.3.4 - Authenticated Blind SQL Injections

The getayspopupboxes and getpopupcategories functions of the plugin did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the getresults DB calls, leading to SQL injection issues in the admin dashboard Exploit All of them with same technique. SQLMAP:...

6.5CVSS0.5AI score0.01362EPSS
Exploits2
wpexploit
wpexploit
added 2021/06/29 12:0 a.m.752 views

Survey Maker < 1.5.6 - Authenticated Blind SQL Injections

The getresults and getitems functions in the plugin did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the getresults DB calls, leading to SQL injection issues in the admin dashboard Note WPScanTeam: Other SQLi were identified when confirming the...

6.5CVSS0.5AI score0.01362EPSS
Exploits2
wpexploit
wpexploit
added 2021/06/29 12:0 a.m.718 views

Quiz Maker < 6.2.0.9 - Multiple Authenticated Blind SQL Injections

The plugin did not properly sanitise and escape the order and orderby parameters before using them in SQL statements, leading to SQL injection issues in the admin dashboard When we WPScanTeam confirmed the issues, more SQL Injections were identified, reported and fixed by the vendor but have not...

6.5CVSS0.7AI score0.01292EPSS
Exploits1
Cvelist
Cvelist
added 2021/06/21 7:18 p.m.19 views

CVE-2021-24361 GeoDirectory Location Manager < 2.1.0.10 - Multiple Unauthenticated SQL Injections

In the Location Manager WordPress plugin before 2.1.0.10, the AJAX action gdpopularlocationlist did not properly sanitise or validate some of its POST parameters, which are then used in a SQL statement, leading to unauthenticated SQL Injection issues...

10AI score0.01832EPSS
Exploits2References2
Rows per page
Query Builder