exploitDog

CVE-2018-5315

Опубликовано: 12 янв. 2018

Источник: nvd

CVSS3: 9.8

CVSS2: 7.5

EPSS Низкий

Описание

The Wachipi WP Events Calendar plugin 1.0 for WordPress has SQL Injection via the event_id parameter to event.php.

Ссылки

http://packetstormsecurity.com/files/145833/WordPress-Events-Calendar-1.0-SQL-Injection.html
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/43479/
Exploit
Third Party Advisory
VDB Entry
http://packetstormsecurity.com/files/145833/WordPress-Events-Calendar-1.0-SQL-Injection.html
Third Party Advisory
VDB Entry
https://www.exploit-db.com/exploits/43479/
Exploit
Third Party Advisory
VDB Entry

Уязвимые конфигурации

Конфигурация 1

cpe:2.3:a:wp_events_calendar_project:wp_events_calendar:1.0:*:*:*:*:wordpress:*:*

EPSS

Процентиль: 91%

0.06691

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-89

Связанные уязвимости

GHSA-q23c-4588-2xf5

CVSS3: 9.8

github

больше 3 лет назад

The Wachipi WP Events Calendar plugin 1.0 for WordPress has SQL Injection via the event_id parameter to event.php.

EPSS

Процентиль: 91%

0.06691

Низкий

9.8 Critical

CVSS3

7.5 High

CVSS2

Дефекты

CWE-89