Overview
- Description
- Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in SWIT WP Sessions Time Monitoring Full Automatic allows SQL Injection.This issue affects WP Sessions Time Monitoring Full Automatic: from n/a through 1.0.9.
- Source
- audit@patchstack.com
- NVD status
- Awaiting Analysis
Risk scores
CVSS 3.1
- Type
- Secondary
- Base score
- 9.3
- Impact score
- 4.7
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:N/A:L
- Severity
- CRITICAL
Weaknesses
- audit@patchstack.com
- CWE-89
Social media
- Hype score
- Not currently trending
#exploit 1. CVE-2024-49681: WP Sessions Time Monitoring Full Automatic <=1.0.9 - Unauthenticated SQLI https://t.co/TqXahOZAcq 2. CVE-2024-10914: D-Link NAS Command Injection https://t.co/p3RvTxYpCf 3. CVE-2024-50483: WP Meetup 0.1 Authentication Bypass https://t.co/95eOMb0bx
@ksg93rd
10 Nov 2024
71 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
#exploit 1. CVE-2024-49681: WP Sessions Time Monitoring Full Automatic <=1.0.9 - Unauthenticated SQLI https://t.co/NEXFvOrbMh 2. CVE-2024-10914: D-Link NAS Command Injection https://t.co/ZTSIUmY2Xy 3. CVE-2024-50483: WP Meetup 0.1 Authentication Bypass https://t.co/IIdHn4fAd
@akaclandestine
10 Nov 2024
1360 Impressions
3 Retweets
12 Likes
10 Bookmarks
0 Replies
0 Quotes
[CVE-2024-49681: CRITICAL] Vulnerability discovered in SWIT WP Sessions Time Monitoring Full Automatic plugin allows for SQL Injection attack, affecting versions from n/a to 1.0.9. #CyberSecurity#cybersecurity,#vulnerability https://t.co/a6EhDJJbyz https://t.co/B36z82T0oc
@CveFindCom
24 Oct 2024
46 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-49681 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in SWIT WP Sessions Time Monitoring Full Automatic allows SQL Injec… https://t.co/8foWf3ivtp
@CVEnew
24 Oct 2024
364 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes