CVE-2024-1893 | Easy Property Listings up to 3.5.2 on WordPress Shortcode sql injection

Inserito da Angelo Barbosa | Mar 21, 2024 | CVE

A vulnerability classified as critical has been found in Easy Property Listings up to 3.5.2 on WordPress. Affected is an unknown function of the component Shortcode Handler. The manipulation leads to sql injection.

This vulnerability is traded as CVE-2024-1893. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-1893 | Easy Property Listings up to 3.5.2 on WordPress Shortcode sql injection

Post correlati

CVE-2023-52729 | SimpleNetwork up to 29bc615 TCP Packet TCPServer.cpp buffer overflow (Issue 23)

CVE-2023-49431 | Tenda AX9 22.03.01.46 /goform/SetOnlineDevName mac command injection

CVE-2024-6698 | FundEngine Plugin up to 1.7.0 on WordPress Privilege Escalation

CVE-2023-52296 | IBM DB2/DB2 Connect 11.5 UDF Built-In Function denial of service (XFDB-278547)