CVE-2025-28939 - CERT CVE
ID CVE-2025-28939
Sažetak Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound WP Google Calendar Manager allows Blind SQL Injection. This issue affects WP Google Calendar Manager: from n/a through 2.1.
Reference
CVSS
Base: 8.5
Impact: 4.7
Exploitability:3.1
Pristup
VektorSloženostAutentikacija
NETWORK LOW LOW
Impact
PovjerljivostCjelovitostDostupnost
HIGH NONE LOW
CVSS vektor CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L
Zadnje važnije ažuriranje 27-03-2025 - 16:45
Objavljeno 26-03-2025 - 15:16