Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Naudin Vladimir FERMA.Ru.Net allows Blind SQL Injection.This issue affects FERMA.Ru.Net: from n/a through 1.3.3.
History

Tue, 22 Oct 2024 19:15:00 +0000

Type Values Removed Values Added
First Time appeared Naudinvladimir
Naudinvladimir ferma.ru.net
CPEs cpe:2.3:a:naudinvladimir:ferma.ru.net:*:*:*:*:*:wordpress:*:*
Vendors & Products Naudinvladimir
Naudinvladimir ferma.ru.net

Mon, 21 Oct 2024 20:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'none', 'Technical Impact': 'partial'}, 'version': '2.0.3'}


Sun, 20 Oct 2024 09:30:00 +0000

Type Values Removed Values Added
Description Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Naudin Vladimir FERMA.Ru.Net allows Blind SQL Injection.This issue affects FERMA.Ru.Net: from n/a through 1.3.3.
Title WordPress FERMA.ru.net plugin <= 1.3.3 - SQL Injection vulnerability
Weaknesses CWE-89
References
Metrics cvssV3_1

{'score': 8.5, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:C/C:H/I:N/A:L'}


cve-icon MITRE

Status: PUBLISHED

Assigner: Patchstack

Published: 2024-10-20T09:08:08.220Z

Updated: 2024-10-21T19:20:19.807Z

Reserved: 2024-10-17T09:51:21.346Z

Link: CVE-2024-49620

cve-icon Vulnrichment

Updated: 2024-10-21T19:20:15.606Z

cve-icon NVD

Status : Analyzed

Published: 2024-10-20T10:15:05.770

Modified: 2024-10-22T18:50:07.957

Link: CVE-2024-49620

cve-icon Redhat

No data.