admin/cvelist
1
0
Fork 0
mirror of https://github.com/CVEProject/cvelist.git synced 2025-08-04 08:44:25 +00:00
Code Issues Packages Projects Releases Wiki Activity
cvelist/2021/24xxx/CVE-2021-24348.json

81 lines
2.1 KiB
JSON
Raw Normal View History

"-Synchronized-Data."
2021-01-14 16:06:01 +00:00
{
Adds WPScan CVEs
2021-06-14 09:01:38 +02:00
"CVE_data_meta": {
"ID": "CVE-2021-24348",
"ASSIGNER": "contact@wpscan.com",
"STATE": "PUBLIC",
"TITLE": "Side Menu < 3.1.5 - Authenticated (admin+) SQL Injection"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"generator": "WPScan CVE Generator",
"affects": {
"vendor": {
"vendor_data": [
{
"vendor_name": "Unknown",
"product": {
"product_data": [
{
"product_name": "Side Menu add fixed side buttons",
"version": {
"version_data": [
{
"version_affected": "<",
"version_name": "3.1.5",
"version_value": "3.1.5"
}
]
}
}
]
}
}
]
}
},
"description": {
"description_data": [
{
"lang": "eng",
"value": "The menu delete functionality of the Side Menu add fixed side buttons WordPress plugin before 3.1.5, available to Administrator users takes the did GET parameter and uses it into an SQL statement without proper sanitisation, validation or escaping, therefore leading to a SQL Injection issue"
}
]
},
"references": {
"reference_data": [
{
"refsource": "CONFIRM",
"url": "https://wpscan.com/vulnerability/e0ca257e-6e78-4611-a9ad-be43d37cf474",
"name": "https://wpscan.com/vulnerability/e0ca257e-6e78-4611-a9ad-be43d37cf474"
},
{
"refsource": "MISC",
"url": "https://codevigilant.com/disclosure/2021/wp-plugin-side-menu/",
"name": "https://codevigilant.com/disclosure/2021/wp-plugin-side-menu/"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"value": "CWE-89 SQL Injection",
"lang": "eng"
}
"-Synchronized-Data."
2021-01-14 16:06:01 +00:00
]
Adds WPScan CVEs
2021-06-14 09:01:38 +02:00
}
]
},
"credit": [
{
"lang": "eng",
"value": "Shreya Pohekar of Codevigilant Project"
"-Synchronized-Data."
2021-01-14 16:06:01 +00:00
}
Adds WPScan CVEs
2021-06-14 09:01:38 +02:00
],
"source": {
"discovery": "UNKNOWN"
}
}
Reference in New Issue Copy Permalink