Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2024-6924

Disclosure Date: September 08, 2024 (last updated February 26, 2025)
The TrueBooker WordPress plugin before 1.0.3 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection.
Attack Vector: NetworkPrivileges: NoneUser Interaction: None
0
0