CVE-2024-4295 | Icegram Express Email Subscribers Plugin up to 5.7.20 on WordPress hash sql injection

Inserito da Angelo Barbosa | Giu 4, 2024 | CVE

A vulnerability, which was classified as critical, was found in Icegram Express Email Subscribers Plugin up to 5.7.20 on WordPress. Affected is an unknown function. The manipulation of the argument hash leads to sql injection.

This vulnerability is traded as CVE-2024-4295. It is possible to launch the attack remotely. There is no exploit available.

CVE-2024-4295 | Icegram Express Email Subscribers Plugin up to 5.7.20 on WordPress hash sql injection

Post correlati

CVE-2024-31308 | VJInfotech WP Import Export Lite Plugin up to 3.9.26 on WordPress deserialization

CVE-2024-24880 | Apollo13Themes Apollo13 Framework Extensions Plugin up to 1.9.2 on WordPress cross site scripting

CVE-2024-1482 | GitHub Enterprise Server prior 3.9.9/3.10.6/3.11.4 authorization

CVE-2024-3154 | cri-o Pod Annotation command injection