Portfolio Gallery Plugin har 1.1.8 ka WordPress SQL Injection

CVSS Meta Temp ScoreGarga na exploit ndiyam (≈)CTI Nganji Score
6.0$0-$5k0.00

Gundumabayani

Gaskiya vulnerability da aka ware a matsayin kura an samu a Portfolio Gallery Plugin har 1.1.8 on WordPress. Hakika, aikin $software_function ne ya shafa; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburaren $software_library, a cikin fayil $software_file, a cikin sashen $software_component. A sa manipulation ka SQL Injection. Wannan matsala ana saninta da CVE-2014-125101. Ngam yiɗi ka a tuma ndiyam ka nder layi. Babu exploit ɗin da ake samu. Ngamdi ka a yiɗi a ɗaɓɓita kompona wey ka a faggata. Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Furɗebayani

Gaskiya vulnerability da aka ware a matsayin kura an samu a Portfolio Gallery Plugin har 1.1.8 on WordPress. Hakika, aikin $software_function ne ya shafa; idan ba a bayyana ba, to aiki ce da ba a sani ba, a cikin laburaren $software_library, a cikin fayil $software_file, a cikin sashen $software_component. A sa manipulation ka SQL Injection. Idan an yi amfani da CWE don bayyana matsala, zai kai CWE-89. Hakika, rauni an bayyana shi 09/19/2014 kamar 58ed88243e17df766036f4857041edaf358076d3. An raba bayanin tsaro don saukewa a github.com.

Wannan matsala ana saninta da CVE-2014-125101. Ngam yiɗi ka a tuma ndiyam ka nder layi. Tekinikal faɗi ba ga. Shaharar wannan vulnerability ɗin ƙasa da matsakaici ne. Babu exploit ɗin da ake samu. Yimbe ndiyam, exploit might be approx. USD $0-$5k wuro.

Á sàmbu a wondi feere. 0-day shima, an ndiyam a wuro be $0-$5k.

Ana kiran patch ɗin da 58ed88243e17df766036f4857041edaf358076d3. Za a iya sauke maganin matsalar daga github.com. Ngamdi ka a yiɗi a ɗaɓɓita kompona wey ka a faggata. Wannan shawara ta ƙunshi wannan magana:

SQL Injection bag has fixed in Portfolio Gallery

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Kayanbayani

Nganji

Sunu

Furɗe

Laisens

CPE 2.3bayani

CPE 2.2bayani

CVSSv4bayani

VulDB Furɗo: 🔍
VulDB Gaskiya: 🔍

CVSSv3bayani

VulDB Meta Base Score: 6.3
VulDB Meta Temp Score: 6.0

VulDB Ganda Borno: 6.3
VulDB Temp Score: 6.0
VulDB Furɗo: 🔍
VulDB Gaskiya: 🔍

CVSSv2bayani

AVACAuCIA
💳💳💳💳💳💳
💳💳💳💳💳💳
💳💳💳💳💳💳
VektarKumpleksitiAuthentisierungKariyandiGaskiyaGashina
furufurufurufurufurufuru
furufurufurufurufurufuru
furufurufurufurufurufuru

VulDB Ganda Borno: 🔍
VulDB Temp Score: 🔍
VulDB Gaskiya: 🔍

Gargajiyabayani

Klasu: SQL Injection
CWE: CWE-89 / CWE-74 / CWE-707
CAPEC: 🔍
ATT&CK: 🔍

Fizikal: Ayi
Gumti: Ayi
Gana: Ee

Gashina: 🔍
Halitta: A wondi feere

EPSS Score: 🔍
EPSS Percentile: 🔍

Furɗo farashi: 🔍
Gaskiya farashi ndiyam: 🔍

0-Dayfurufurufurufuru
Lalefurufurufurufuru

Bayani na barazanabayani

Ngam: 🔍
Akteɓe ɓernde: 🔍
Kura APT goruwa masu aiki: 🔍

Kari gamjibayani

Garga: Gargajiya
Halitta: 🔍

Garga waaji: 🔍
0-Day Gana: 🔍
Lokon Gana: 🔍

Gargajiya: Portfolio Gallery Plugin 1.1.9
Kari: 58ed88243e17df766036f4857041edaf358076d3

Waktin layibayani

09/19/2014 🔍
09/19/2014 +0 Hənde 🔍
05/27/2023 +3172 Hənde 🔍
05/27/2023 +0 Hənde 🔍
06/21/2023 +25 Hənde 🔍

Ngizimbayani

Gargaaji: 58ed88243e17df766036f4857041edaf358076d3
Halitta: Gaskiya

CVE: CVE-2014-125101 (🔍)
GCVE (CVE): GCVE-0-2014-125101
GCVE (VulDB): GCVE-100-230085

Gumtibayani

Súgá: 05/27/2023 09:58
Gargadi: 06/21/2023 13:18
Goyarwa: 05/27/2023 09:58 (44), 06/21/2023 13:18 (2)
Gadankam: 🔍
Cache ID: 253:F5D:103

Ganaaji

A ga wuroyo kulu. Kàlàmbe: kr + en.

Ngam loga ka, kanyi shidin dum.

GurɗoGumtiGada

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!