- Description
- Improper Control of Generation of Code ('Code Injection') vulnerability in LUBUS WP Query Console allows Code Injection.This issue affects WP Query Console: from n/a through 1.0.
- Source
- audit@patchstack.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 9.8
- Impact score
- 5.9
- Exploitability score
- 3.9
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
- Severity
- CRITICAL
- audit@patchstack.com
- CWE-94
- Hype score
- Not currently trending
CVE-2024-50498 Description Improper Control of Generation of Code ('Code Injection') # vulnerability in LUBUS WP Query Console allows Code Injection.This issue affects WP Query Console: from n/a through 1.0. Poc https://t.co/cYOKTdWkt1 #Hacking #wordpress #Syria
@Nxploited
4 Jan 2025
32 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
Critical Vulnerability in Hunk Companion Plugin: Unauthorized Plugin Installation #OSINT #CVE-2024-11972 #CVE-2024-50498 #T1190 #ExploitPublicFacingApplication #T1210 #ExploitationOfRemoteServices #T1505003 #WebShell #T1588005 #Exploits https://t.co/poymjeGxsj
@iProtectCSS
19 Dec 2024
9 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-50498 Dork: /wp-json/wqc/v1/query Exploit: https://t.co/8UXQBAh3UG
@VovkaPOC
18 Nov 2024
11 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
0-Click RCE (Unauthenticated/Pre-Auth) Exploit for CVE-2024-50498 (Code Injection + Arbitrary File Upload)😀 #Wordpress #BugBounty #BugChaining https://t.co/xD3RVuTwKS
@JoshuaProvoste
18 Nov 2024
7178 Impressions
26 Retweets
138 Likes
42 Bookmarks
1 Reply
0 Quotes
CVE-2024-50498 Improper Control of Generation of Code ('Code Injection') vulnerability in LUBUS WP Query Console allows Code Injection.This issue affects WP Query Console: from n/a … https://t.co/oKo3yzSSXS
@CVEnew
28 Oct 2024
432 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[CVE-2024-50498: CRITICAL] Improper Control of Generation of Code ('Code Injection') vulnerability in LUBUS WP Query Console allows Code Injection.This issue affects WP Query Console: from n/a through 1.0.#cybersecurity,#vulnerability https://t.co/oeXG0nqzYB https://t.co/mF1Go3WF
@CveFindCom
28 Oct 2024
28 Impressions
0 Retweets
1 Like
0 Bookmarks
0 Replies
1 Quote
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:lubus:wp_query_console:*:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "28E89900-F8F0-469C-A369-5D227F6E2E4F",
"versionEndIncluding": "1.0"
}
],
"operator": "OR"
}
]
}
]