CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-6809

The Simple Video Directory WordPress plugin before 1.4.3 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 37.0%

CVSS Severity

CVSS v3 Score 9.8

References

https://wpscan.com/vulnerability/60abcae5-4c89-4d48-95f8-6a80e5f06a37/

Products affected by CVE-2024-6809

Quantumcloud » Simple Video Directory » Version: N/A

cpe:2.3:a:quantumcloud:simple_video_directory:-
Quantumcloud » Simple Video Directory » Version: 0.9.0

cpe:2.3:a:quantumcloud:simple_video_directory:0.9.0
Quantumcloud » Simple Video Directory » Version: 1.0.0

cpe:2.3:a:quantumcloud:simple_video_directory:1.0.0
Quantumcloud » Simple Video Directory » Version: 1.1.0

cpe:2.3:a:quantumcloud:simple_video_directory:1.1.0
Quantumcloud » Simple Video Directory » Version: 1.2.0

cpe:2.3:a:quantumcloud:simple_video_directory:1.2.0
Quantumcloud » Simple Video Directory » Version: 1.3.0

cpe:2.3:a:quantumcloud:simple_video_directory:1.3.0
Quantumcloud » Simple Video Directory » Version: 1.4.0

cpe:2.3:a:quantumcloud:simple_video_directory:1.4.0
Quantumcloud » Simple Video Directory » Version: 1.4.1

cpe:2.3:a:quantumcloud:simple_video_directory:1.4.1
Quantumcloud » Simple Video Directory » Version: 1.4.2

cpe:2.3:a:quantumcloud:simple_video_directory:1.4.2

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-6809

Products

Pricing

Contact Us