CVE-2024-13095 - CERT CVE

  1. CVE-2024-13095

ID CVE-2024-13095
Sažetak The WP Triggers Lite WordPress plugin through 2.5.3 does not sanitize and escape a parameter before using it in a SQL statement, allowing admins to perform SQL injection attacks
Reference
CVSS
Base: 4.8
Impact: 2.7
Exploitability:1.7
Pristup
VektorSloženostAutentikacija
NETWORK LOW HIGH
Impact
PovjerljivostCjelovitostDostupnost
LOW LOW NONE
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:H/UI:R/S:C/C:L/I:L/A:N
Zadnje važnije ažuriranje 05-05-2025 - 15:16
Objavljeno 27-01-2025 - 06:15