exploitDog

CVE-2025-31542

Опубликовано: 31 мар. 2025

Источник: nvd

CVSS3: 8.5

EPSS Низкий

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in wphocus My auctions allegro allows Blind SQL Injection. This issue affects My auctions allegro: from n/a through 3.6.20.

Ссылки

https://patchstack.com/database/wordpress/plugin/my-auctions-allegro-free-edition/vulnerability/wordpress-my-auctions-allegro-plugin-3-6-20-sql-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 40%

0.00179

Низкий

8.5 High

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-jw7p-3jmg-8h4h

CVSS3: 8.5

github

10 месяцев назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in wphocus My auctions allegro allows Blind SQL Injection. This issue affects My auctions allegro: from n/a through 3.6.20.

EPSS

Процентиль: 40%

0.00179

Низкий

8.5 High

CVSS3

Дефекты

CWE-89