cve/CVE-2024-5765.md at c052d0d6949679697108fa931a00cd4220694869

admin/cve

mirror of https://github.com/0xMarcio/cve.git synced 2025-05-31 10:40:54 +00:00

0xMarcio 8654f5abb7 Update CVE sources 2024-08-11 18:44

2024-08-11 18:44:53 +00:00

Description

The WpStickyBar WordPress plugin through 2.1.0 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection

POC

Reference

https://wpscan.com/vulnerability/0b73f84c-611e-4681-b362-35e721478ba4/

Github

https://github.com/20142995/nuclei-templates

742 B Raw Blame History

CVE-2024-5765

Description

POC

Reference

Github

742 B

Raw Blame History