Lucene search
K
SigmapluginAdvanced Database Cleaner

6 matches found

CVE
CVE
added 2022/02/21 10:45 a.m.102 views

CVE-2021-24921

The CVE-2021-24921 entry relates to the WordPress plugin Advanced Database Cleaner (before version 3.0.4). The underlying issue is that the plugin does not sanitize/escape $_GET keys and values before echoing them into attributes, enabling Reflected Cross-Site Scripting (XSS). Affected software: ...

6.1CVSS6AI score0.00788EPSS
Web
CVE
CVE
added 2022/07/17 10:36 a.m.66 views

CVE-2022-2173

CVE-2022-2173 concerns the WordPress plugin Advanced Database Cleaner prior to version 3.1.1 . The vulnerability arises because the plugin does not escape numerous generated URLs before outputting them into href attributes on admin dashboard pages, enabling a Reflected Cross‑Site Scripting (XSS) ...

6.1CVSS6.1AI score0.00661EPSS
Web
CVE
CVE
added 2023/12/19 8:31 p.m.53 views

CVE-2023-49764

CVE-2023-49764 affects the WordPress plugin Advanced Database Cleaner (

7.6CVSS7.8AI score0.0074EPSS
CVE
CVE
added 2024/02/05 9:22 p.m.53 views

CVE-2024-0668

CVE-2024-0668 affects the WordPress plugin “Advanced Database Cleaner” (≤ v3.1.3). The root cause is PHP Object Injection via deserialization in the process_bulk_action function, exploitable by an authenticated attacker with administrator-level access (no user interaction required). Potential imp...

7.2CVSS7.6AI score0.01139EPSS
CVE
CVE
added 2021/03/18 2:57 p.m.44 views

CVE-2021-24141

The WordPress plugin Advanced Database Cleaner (vulnerable up to 3.0.1) is affected by an unvalidated-input SQL injection. The issue allows authenticated high-privilege users (admin+) to perform SQL attacks and potentially exfiltrate data. Root cause: insufficient input validation in the plugin’s...

7.2CVSS7.2AI score0.01205EPSS
CVE
CVE
added 2023/05/23 2:49 p.m.44 views

CVE-2022-46813

CVE-2022-46813 affects the WordPress plugin Advanced Database Cleaner (versions

8.8CVSS6.5AI score0.00256EPSS