CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-12104

The Import feature in the wp-advanced-search plugin 3.3.6 for WordPress is vulnerable to authenticated SQL injection via an uploaded .sql file. An attacker can use this to execute SQL commands without any validation.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.006

EPSS Ranking 69.2%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.5

References

Products affected by CVE-2020-12104

Internet-Formation » Wp-Advanced-Search » Version: N/A

cpe:2.3:a:internet-formation:wp-advanced-search:-
Internet-Formation » Wp-Advanced-Search » Version: 1.0

cpe:2.3:a:internet-formation:wp-advanced-search:1.0
Internet-Formation » Wp-Advanced-Search » Version: 1.1

cpe:2.3:a:internet-formation:wp-advanced-search:1.1
Internet-Formation » Wp-Advanced-Search » Version: 1.1.5

cpe:2.3:a:internet-formation:wp-advanced-search:1.1.5
Internet-Formation » Wp-Advanced-Search » Version: 1.2

cpe:2.3:a:internet-formation:wp-advanced-search:1.2
Internet-Formation » Wp-Advanced-Search » Version: 1.5

cpe:2.3:a:internet-formation:wp-advanced-search:1.5
Internet-Formation » Wp-Advanced-Search » Version: 1.6

cpe:2.3:a:internet-formation:wp-advanced-search:1.6
Internet-Formation » Wp-Advanced-Search » Version: 1.7

cpe:2.3:a:internet-formation:wp-advanced-search:1.7
Internet-Formation » Wp-Advanced-Search » Version: 1.7.1

cpe:2.3:a:internet-formation:wp-advanced-search:1.7.1
Internet-Formation » Wp-Advanced-Search » Version: 1.8

cpe:2.3:a:internet-formation:wp-advanced-search:1.8
Internet-Formation » Wp-Advanced-Search » Version: 2.0

cpe:2.3:a:internet-formation:wp-advanced-search:2.0
Internet-Formation » Wp-Advanced-Search » Version: 2.0.3

cpe:2.3:a:internet-formation:wp-advanced-search:2.0.3
Internet-Formation » Wp-Advanced-Search » Version: 2.1

cpe:2.3:a:internet-formation:wp-advanced-search:2.1
Internet-Formation » Wp-Advanced-Search » Version: 2.2

cpe:2.3:a:internet-formation:wp-advanced-search:2.2
Internet-Formation » Wp-Advanced-Search » Version: 2.2.1

cpe:2.3:a:internet-formation:wp-advanced-search:2.2.1
Internet-Formation » Wp-Advanced-Search » Version: 2.3

cpe:2.3:a:internet-formation:wp-advanced-search:2.3
Internet-Formation » Wp-Advanced-Search » Version: 2.4

cpe:2.3:a:internet-formation:wp-advanced-search:2.4
Internet-Formation » Wp-Advanced-Search » Version: 2.4.1

cpe:2.3:a:internet-formation:wp-advanced-search:2.4.1
Internet-Formation » Wp-Advanced-Search » Version: 2.4.2

cpe:2.3:a:internet-formation:wp-advanced-search:2.4.2
Internet-Formation » Wp-Advanced-Search » Version: 2.4.3

cpe:2.3:a:internet-formation:wp-advanced-search:2.4.3
Internet-Formation » Wp-Advanced-Search » Version: 2.4.4

cpe:2.3:a:internet-formation:wp-advanced-search:2.4.4
Internet-Formation » Wp-Advanced-Search » Version: 2.5

cpe:2.3:a:internet-formation:wp-advanced-search:2.5
Internet-Formation » Wp-Advanced-Search » Version: 2.6

cpe:2.3:a:internet-formation:wp-advanced-search:2.6
Internet-Formation » Wp-Advanced-Search » Version: 2.6.1

cpe:2.3:a:internet-formation:wp-advanced-search:2.6.1
Internet-Formation » Wp-Advanced-Search » Version: 2.6.2

cpe:2.3:a:internet-formation:wp-advanced-search:2.6.2
Internet-Formation » Wp-Advanced-Search » Version: 2.7

cpe:2.3:a:internet-formation:wp-advanced-search:2.7
Internet-Formation » Wp-Advanced-Search » Version: 2.7.1

cpe:2.3:a:internet-formation:wp-advanced-search:2.7.1
Internet-Formation » Wp-Advanced-Search » Version: 2.8

cpe:2.3:a:internet-formation:wp-advanced-search:2.8
Internet-Formation » Wp-Advanced-Search » Version: 2.8.1

cpe:2.3:a:internet-formation:wp-advanced-search:2.8.1
Internet-Formation » Wp-Advanced-Search » Version: 3.0

cpe:2.3:a:internet-formation:wp-advanced-search:3.0
Internet-Formation » Wp-Advanced-Search » Version: 3.0.2

cpe:2.3:a:internet-formation:wp-advanced-search:3.0.2
Internet-Formation » Wp-Advanced-Search » Version: 3.0.4

cpe:2.3:a:internet-formation:wp-advanced-search:3.0.4
Internet-Formation » Wp-Advanced-Search » Version: 3.2

cpe:2.3:a:internet-formation:wp-advanced-search:3.2
Internet-Formation » Wp-Advanced-Search » Version: 3.2.1

cpe:2.3:a:internet-formation:wp-advanced-search:3.2.1
Internet-Formation » Wp-Advanced-Search » Version: 3.2.2

cpe:2.3:a:internet-formation:wp-advanced-search:3.2.2
Internet-Formation » Wp-Advanced-Search » Version: 3.3

cpe:2.3:a:internet-formation:wp-advanced-search:3.3
Internet-Formation » Wp-Advanced-Search » Version: 3.3.1

cpe:2.3:a:internet-formation:wp-advanced-search:3.3.1
Internet-Formation » Wp-Advanced-Search » Version: 3.3.3

cpe:2.3:a:internet-formation:wp-advanced-search:3.3.3

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-12104

Products

Pricing

Contact Us