cve/CVE-2024-4145.md at 5cee05fa8d41e65fccbcb37ad9d0c2370367d63f

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-06 10:41:43 +00:00

0xMarcio 6100550298 Update CVE sources 2024-06-22 09:37

2024-06-22 09:37:59 +00:00

Description

The Search & Replace WordPress plugin before 3.2.2 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks (such as within a multi-site network).

POC

Reference

https://wpscan.com/vulnerability/7d5b8764-c82d-4969-a707-f38b63bcadca/

Github

No PoCs found on GitHub currently.

758 B Raw Blame History

CVE-2024-4145

Description

POC

Reference

Github

758 B

Raw Blame History