CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-6926

The Viral Signup WordPress plugin through 2.1 does not properly sanitise and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection

Exploit prediction scoring system (EPSS) score

EPSS Score 0.714

EPSS Ranking 98.6%

CVSS Severity

CVSS v3 Score 9.8

References

https://wpscan.com/vulnerability/9ce96ce5-fcf0-4d7a-b562-f63ea3418d93/

Products affected by CVE-2024-6926

Wow-Company » Viral Signup » Version: N/A

cpe:2.3:a:wow-company:viral_signup:-
Wow-Company » Viral Signup » Version: 2.1

cpe:2.3:a:wow-company:viral_signup:2.1

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-6926

Products

Pricing

Contact Us