exploitDog

CVE-2025-28939

Опубликовано: 26 мар. 2025

Источник: nvd

CVSS3: 8.5

EPSS Низкий

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound WP Google Calendar Manager allows Blind SQL Injection. This issue affects WP Google Calendar Manager: from n/a through 2.1.

Ссылки

https://patchstack.com/database/wordpress/plugin/wp-gcalendar/vulnerability/wordpress-wp-google-calendar-manager-plugin-2-1-sql-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 29%

0.00104

Низкий

8.5 High

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-rf6p-cgc2-j8vp

CVSS3: 8.5

github

11 месяцев назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in NotFound WP Google Calendar Manager allows Blind SQL Injection. This issue affects WP Google Calendar Manager: from n/a through 2.1.

EPSS

Процентиль: 29%

0.00104

Низкий

8.5 High

CVSS3

Дефекты

CWE-89