Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WBW WBW Product Table PRO allows SQL Injection.This issue affects WBW Product Table PRO: from n/a through 1.9.4.
History

Thu, 10 Oct 2024 13:30:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:woobewoo:product_table:*:*:pro:*:*:wordpress:*:* cpe:2.3:a:woobewoo:product_table:*:*:*:*:pro:wordpress:*:*

Fri, 06 Sep 2024 16:15:00 +0000

Type Values Removed Values Added
First Time appeared Woobewoo product Table
CPEs cpe:2.3:a:woobewoo:product_table:*:*:pro:*:*:wordpress:*:*
Vendors & Products Woobewoo product Table

Thu, 29 Aug 2024 20:30:00 +0000

Type Values Removed Values Added
First Time appeared Woobewoo
Woobewoo product Table Pro
CPEs cpe:2.3:a:woobewoo:product_table_pro:*:*:*:*:*:*:*:*
Vendors & Products Woobewoo
Woobewoo product Table Pro
Metrics ssvc

{'options': {'Automatable': 'yes', 'Exploitation': 'none', 'Technical Impact': 'total'}, 'version': '2.0.3'}


Thu, 29 Aug 2024 15:00:00 +0000

Type Values Removed Values Added
Description Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WBW WBW Product Table PRO allows SQL Injection.This issue affects WBW Product Table PRO: from n/a through 1.9.4.
Title WordPress WBW Product Table PRO plugin <= 1.9.4 - Unauthenticated Arbitrary SQL Query Execution vulnerability
Weaknesses CWE-89
References
Metrics cvssV3_1

{'score': 10, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published: 2024-08-29T14:49:51.828Z

Updated: 2024-08-29T15:35:29.402Z

Reserved: 2024-08-18T21:55:54.398Z

Link: CVE-2024-43918

cve-icon Vulnrichment

Updated: 2024-08-29T15:35:21.301Z

cve-icon NVD

Status : Analyzed

Published: 2024-08-29T15:15:29.010

Modified: 2024-10-10T13:01:57.573

Link: CVE-2024-43918

cve-icon Redhat

No data.