Lucene search

Wp-kama Security Vulnerabilities

cve

CVE-2017-20103

A vulnerability classified as critical has been found in Kama Click Counter Plugin up to 3.4.8. This affects an unknown part of the file wp-admin/admin.php. The manipulation of the argument order_by/order with the input ASC%2c(select*from(select(sleep(2)))a) leads to sql injection (Blind). It is...

8.8CVSS

8.9AI Score

0.001EPSS

2022-06-27 10:15 PM

cve

CVE-2017-18614

The kama-clic-counter plugin 3.4.9 for WordPress has SQL injection via the admin.php order...

8.1CVSS

8.5AI Score

0.002EPSS

2019-09-13 12:15 PM

cve

CVE-2017-18615

The kama-clic-counter plugin before 3.5.0 for WordPress has...

6.1CVSS

6.4AI Score

0.001EPSS

2019-09-13 12:15 PM

cve

CVE-2017-18521

The democracy-poll plugin before 5.4 for WordPress has CSRF via...

8.8CVSS

8.7AI Score

0.001EPSS

2019-08-21 07:15 PM

cve

CVE-2017-18520

The democracy-poll plugin before 5.4 for WordPress has XSS via update_l10n in...

6.1CVSS

6AI Score

0.001EPSS

2019-08-20 03:15 PM