ГлавнаяУязвимости → CVE-2022-3764
7.2высокая

CVE-2022-3764

Описание

The plugin does not filter the "delete_entries" parameter from user requests, leading to an SQL Injection vulnerability.

Затрагиваемое ПО
Wpvibes Form vibes
CVSS
Балл7.2 — высокая
ВекторCVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
Источники
https://wpscan.com/vulnerability/9d49df6b-e2f1-4662-90d2-84c29c3b1cb0/https://wpscan.com/vulnerability/9d49df6b-e2f1-4662-90d2-84c29c3b1cb0/