CVE-2024-44004

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in WPTaskForce WPCargo Track & Trace allows SQL Injection.This issue affects WPCargo Track & Trace: from n/a through 7.0.6.
Configurations

Configuration 1 (hide)

cpe:2.3:a:wptaskforce:track_\&_trace:*:*:*:*:*:wordpress:*:*

History

24 Sep 2024, 19:22

Type Values Removed Values Added
References () https://patchstack.com/database/vulnerability/wpcargo/wordpress-wpcargo-track-trace-plugin-7-0-6-sql-injection-vulnerability?_s_id=cve - () https://patchstack.com/database/vulnerability/wpcargo/wordpress-wpcargo-track-trace-plugin-7-0-6-sql-injection-vulnerability?_s_id=cve - Third Party Advisory
CPE cpe:2.3:a:wptaskforce:track_\&_trace:*:*:*:*:*:wordpress:*:*
CVSS v2 : unknown
v3 : 9.3
v2 : unknown
v3 : 9.8
First Time Wptaskforce track \& Trace
Wptaskforce

20 Sep 2024, 12:30

Type Values Removed Values Added
Summary
  • (es) Vulnerabilidad de neutralización incorrecta de elementos especiales utilizados en un comando SQL ('Inyección SQL') en WPTaskForce WPCargo Track & Trace permite la inyección SQL. Este problema afecta a WPCargo Track & Trace: desde n/a hasta 7.0.6.

17 Sep 2024, 23:15

Type Values Removed Values Added
New CVE

Information

Published : 2024-09-17 23:15

Updated : 2024-09-24 19:22


NVD link : CVE-2024-44004

Mitre link : CVE-2024-44004

CVE.ORG link : CVE-2024-44004


JSON object : View

Products Affected

wptaskforce

  • track_\&_trace
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')