Today > 5 Critical | 6 High | 28 Medium vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-36082

June 7, 2024, 2:56 p.m.

Tags

vultures@jpcert.or.jp
2024-06-07
CVE-2024-36082

Product(s) Impacted

Music Store - WordPress eCommerce

  • before 1.1.14

Description

SQL injection vulnerability in Music Store - WordPress eCommerce versions prior to 1.1.14 allows a remote authenticated attacker with an administrative privilege to execute arbitrary SQL commands. Information stored in the database may be obtained or altered by the attacker.

Weaknesses

Date

Published: June 7, 2024, 4:15 a.m.

Last Modified: June 7, 2024, 2:56 p.m.

Status : Awaiting Analysis

CVE has been marked for Analysis. Normally once in this state the CVE will be analyzed by NVD staff within 24 hours.

More info

Source

vultures@jpcert.or.jp

References

https://jvn.jp/ vultures@jpcert.or.jp
https://plugins.trac.wordpress.org/ vultures@jpcert.or.jp
https://wordpress.org/ vultures@jpcert.or.jp