NVD Vulnerability Detail

Search Exploit, PoC

GitHub

Exploit DB

Packet Storm

NVD脆弱性検索トップ

->

NVD Vulnerability Detail

CVE-2024-3265

Summary	The Advanced Search WordPress plugin through 1.1.6 does not properly escape parameters appended to an SQL query, making it possible for users with the administrator role to conduct SQL Injection attacks in the context of a multisite WordPress configurations.
Publication Date	April 26, 2024, 7:15 a.m.
Registration Date	April 26, 2024, 10 a.m.
Last Update	April 26, 2024, 9:58 p.m.

Related information, measures and tools

No	URL	refsource	タグ
1	https://wpscan.com/vulnerability/ecb74622-eeed-48b6-a944-4e3494d6594d/

Common Vulnerabilities List