exploitDog

CVE-2025-31564

Опубликовано: 01 апр. 2025

Источник: nvd

CVSS3: 8.5

EPSS Низкий

Описание

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in aitool Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One allows Blind SQL Injection. This issue affects Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One: from n/a through 2.1.7.

Ссылки

https://patchstack.com/database/wordpress/plugin/ai-auto-tool/vulnerability/chatgpt-ai-auto-tool-content-writing-assistant-gemini-writer-chatgpt-all-in-one-plugin-2-1-7-sql-injection-vulnerability?_s_id=cve

EPSS

Процентиль: 40%

0.00179

Низкий

8.5 High

CVSS3

Дефекты

CWE-89

Связанные уязвимости

GHSA-x8c8-54jh-wpc2

CVSS3: 8.5

github

10 месяцев назад

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in aitool Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One allows Blind SQL Injection. This issue affects Ai Auto Tool Content Writing Assistant (Gemini Writer, ChatGPT ) All in One: from n/a through 2.1.7.

EPSS

Процентиль: 40%

0.00179

Низкий

8.5 High

CVSS3

Дефекты

CWE-89