Vulnerability Details CVE-2021-44779
Unauthenticated SQL Injection (SQLi) vulnerability discovered in [GWA] AutoResponder WordPress plugin (versions <= 2.3), vulnerable at (&listid). No patched version available, plugin closed.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.005
EPSS Ranking 63.3%
CVSS Severity
CVSS v3 Score 7.3
CVSS v2 Score 7.5
References
- https://patchstack.com/database/vulnerability/gwa-autoresponder/wordpress-gwa-autoresponder-plugin-2-3-unauthenticated-sql-injection-sqli-vulnerability
- https://wordpress.org/plugins/gwa-autoresponder/
- https://patchstack.com/database/vulnerability/gwa-autoresponder/wordpress-gwa-autoresponder-plugin-2-3-unauthenticated-sql-injection-sqli-vulnerability
- https://wordpress.org/plugins/gwa-autoresponder/
Products affected by CVE-2021-44779
-
cpe:2.3:a:[gwa]_autoresponder_project:[gwa]_autoresponder:-
-
cpe:2.3:a:[gwa]_autoresponder_project:[gwa]_autoresponder:2.3