- Description
- Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AF themes WP Post Author allows SQL Injection.This issue affects WP Post Author: from n/a through 3.8.2.
- Source
- audit@patchstack.com
- NVD status
- Analyzed
CVSS 3.1
- Type
- Primary
- Base score
- 7.2
- Impact score
- 5.9
- Exploitability score
- 1.2
- Vector string
- CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:H/I:H/A:H
- Severity
- HIGH
- audit@patchstack.com
- CWE-89
- Hype score
- Not currently trending
CVE-2024-56247 SQL Injection Vulnerability in WP Post Author Plugin Versions Up to 3.8.2 An SQL Injection vulnerability is present in AF themes WP Post Author. This issue permits SQL Injection. It is found in WP ... https://t.co/yddmil4GmH
@VulmonFeeds
2 Jan 2025
38 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
CVE-2024-56247 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in AF themes WP Post Author allows SQL Injection.This issue affects… https://t.co/V1ZwpaZjIj
@CVEnew
2 Jan 2025
145 Impressions
0 Retweets
0 Likes
0 Bookmarks
0 Replies
0 Quotes
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:afthemes:wp_post_author:*:*:*:*:*:wordpress:*:*",
"vulnerable": true,
"matchCriteriaId": "6DC7FACB-FD7E-43F5-AD8C-65DDCF3AF97E",
"versionEndExcluding": "3.8.3"
}
],
"operator": "OR"
}
]
}
]