CVE-2024-13532 | enituretechnology Small Package Quotes Plugin up to 3.6.4 on WordPress edit_id/dropship_edit_id sql injection

Inserito da Angelo Barbosa | Feb 12, 2025 | CVE

A vulnerability classified as critical was found in enituretechnology Small Package Quotes Plugin up to 3.6.4 on WordPress. Affected by this vulnerability is an unknown functionality. The manipulation of the argument edit_id/dropship_edit_id leads to sql injection.

This vulnerability is known as CVE-2024-13532. The attack can be launched remotely. There is no exploit available.

CVE-2024-13532 | enituretechnology Small Package Quotes Plugin up to 3.6.4 on WordPress edit_id/dropship_edit_id sql injection

Post correlati

CVE-2024-1552 | Mozilla Firefox up to 122 on 32-bit ARM Remote Code Execution

CVE-2024-4088 | shafayat-alam Gutenberg Blocks and Page Layouts Plugin up to 1.9.2 on WordPress disable_fe_assets cross-site request forgery

CVE-2025-25065 | Zimbra Collaboration Suite server-side request forgery

CVE-2024-39023 | idcCMS 1.35 info_deal.php cross-site request forgery