exploitDog

CVE-2025-30788

Опубликовано: 27 мар. 2025

Источник: nvd

CVSS3: 8.2

EPSS Низкий

Описание

Cross-Site Request Forgery (CSRF) vulnerability in Eli EZ SQL Reports Shortcode Widget and DB Backup allows SQL Injection. This issue affects EZ SQL Reports Shortcode Widget and DB Backup: from n/a through 5.25.08.

Ссылки

https://patchstack.com/database/wordpress/plugin/elisqlreports/vulnerability/wordpress-ez-sql-reports-shortcode-widget-and-db-backup-plugin-5-25-08-csrf-to-sql-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 26%

0.00093

Низкий

8.2 High

CVSS3

Дефекты

CWE-352

Связанные уязвимости

GHSA-7x3g-q3pp-h6vc

CVSS3: 8.2

github

11 месяцев назад

Cross-Site Request Forgery (CSRF) vulnerability in Eli EZ SQL Reports Shortcode Widget and DB Backup allows SQL Injection. This issue affects EZ SQL Reports Shortcode Widget and DB Backup: from n/a through 5.25.08.

EPSS

Процентиль: 26%

0.00093

Низкий

8.2 High

CVSS3

Дефекты

CWE-352