Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TemplateInvaders TI WooCommerce Wishlist allows SQL Injection.This issue affects TI WooCommerce Wishlist: from n/a through 2.8.2.
History

Thu, 19 Sep 2024 22:15:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:templateinvaders:ti_woocommerce_wishlist:*:*:*:*:free:wordpress:*:*

Thu, 29 Aug 2024 20:30:00 +0000

Type Values Removed Values Added
First Time appeared Templateinvaders
Templateinvaders ti Woocommerce Wishlist
CPEs cpe:2.3:a:templateinvaders:ti_woocommerce_wishlist:*:*:*:*:*:wordpress:*:*
Vendors & Products Templateinvaders
Templateinvaders ti Woocommerce Wishlist
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Thu, 29 Aug 2024 15:00:00 +0000

Type Values Removed Values Added
Description Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in TemplateInvaders TI WooCommerce Wishlist allows SQL Injection.This issue affects TI WooCommerce Wishlist: from n/a through 2.8.2.
Title WordPress TI WooCommerce Wishlist plugin <= 2.8.2 - SQL Injection vulnerability
Weaknesses CWE-89
References
Metrics cvssV3_1

{'score': 9.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published: 2024-08-29T14:46:35.611Z

Updated: 2024-08-29T15:37:19.370Z

Reserved: 2024-08-18T21:55:54.397Z

Link: CVE-2024-43917

cve-icon Vulnrichment

Updated: 2024-08-29T15:37:15.452Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-29T15:15:28.753

Modified: 2024-09-19T21:46:19.713

Link: CVE-2024-43917

cve-icon Redhat

No data.