CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

3 matches found

Tenable Nessus•added 2022/10/20 12:0 a.m.•12 views

WordPress 4.3.x < 4.3.30 Multiple Vulnerabilities

According to its self-reported version number, the detected WordPress application is affected by multiple vulnerabilities : - A stored Cross-Site Scripting XSS via wp-mail.php post by email. - An open redirect in wpnonceays. - Sender's email address is exposed in wp-mail.php. - A Cross-Site...

7.8AI score

Exploits0References2

WPVulnDB•added 2022/10/19 12:0 a.m.•435 views

WP < 6.0.3 - SQLi in WP_Date_Query

Description WP does not properly sanitize the relation passed to WPDateQuery, which could lead to SQL injection...

8.1AI score

Exploits0References2

Patchstack•added 2022/10/18 12:0 a.m.•812 views

WordPress core <= 6.0.2 - SQL Injection (SQLi) vulnerability

SQL Injection SQLi vulnerability due to improper sanitization in WPDateQuery discovered by Michael Mazzolini in WordPress core versions = 6.0.2. Solution Update the WordPress WordPress wordpress to the latest available version at least 6.0.3...

2.5AI score

Exploits0References2Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by