Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
wpvulndbWpvulndbWPVDB-ID:691DA8EE-42CC-4B01-B0BB-A19D43FACB6C
HistoryJul 10, 2020 - 12:00 a.m.

SRS Simple Hits Counter <= 1.0.4 - Unauthenticated Blind SQL Injection

2020-07-1000:00:00
wpscan.com
8
JSON

Alex Peña from Tenable discovered a blind SQL injection which could allow unauthenticated remote attackers to retrieve data from the DBMS. Note: The vendor attempted a fix in v1.0.4, which is incomplete.

PoC

The PoC will be displayed once the issue has been remediated

CPENameOperatorVersion
srs-simple-hits-countereq*

Related

prion 1
nessus 1
dsquare 1
wpexploit 1
cve 1
checkpoint_advisories 1
prion
prion
Sql injection
2020-07-13 15:15:00
nessus
nessus
WordPress Plugin 'SRS Simple Hits Counter' Information Disclosure
2020-08-27 00:00:00
dsquare
dsquare
WordPress SRS Simple Hits Counter SQL Injection
2020-09-02 00:00:00
wpexploit
wpexploit
SRS Simple Hits Counter <= 1.0.4 - Unauthenticated Blind SQL Injection
2020-07-10 00:00:00
cve
cve
CVE-2020-5766
2020-07-13 15:15:00
checkpoint_advisories
checkpoint_advisories
SQL Injection Over HTTP Traffic (CVE-2020-11530; CVE-2020-17463; CVE-2020-17506; CVE-2020-25990; CVE-2020-27481; CVE-2020-5766; CVE-2020-8655; CVE-2020-8656; CVE-2020-9465)
2020-11-18 00:00:00
JSON
Related for WPVDB-ID:691DA8EE-42CC-4B01-B0BB-A19D43FACB6C
prion1nessus1dsquare1wpexploit1cve1checkpoint_advisories1