Lucene search
HistoryOct 03, 2022 - 4:20 p.m.
CVE-2014-5185
cve-2014-5185
sql injection
quartz plugin
wordpress
nvd
6 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
8.3 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
44.2%
SQL injection vulnerability in the Quartz plugin 1.01.1 for WordPress allows remote authenticated users with Contributor privileges to execute arbitrary SQL commands via the quote parameter in an edit action in the quartz/quote_form.php page to wp-admin/edit.php.
Affected configurations
Node
quartz_plugin_projectquartz_pluginMatch1.01.1wordpress
| CPE | Name | Operator | Version |
|---|---|---|---|
| quartz_plugin_project:quartz_plugin | quartz plugin project quartz plugin | eq | 1.01.1 |
Related
wpvulndb
wpvulndb
Quartz Plugin 1.01.1 - SQL Injection
2014-09-27 12:14:04
patchstack
patchstack
WordPress Quartz Plugin <= 1.01.1 - SQL Injection
2014-08-06 00:00:00
prion
prion
Sql injection
2014-08-06 19:55:00
cvelist
cvelist
CVE-2014-5185
2022-10-03 16:20:43
nvd
nvd
CVE-2014-5185
2014-08-06 19:55:04
6 Medium
CVSS2
Attack Vector
NETWORK
Attack Complexity
MEDIUM
Authentication
SINGLE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:M/Au:S/C:P/I:P/A:P
8.3 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
44.2%
Related for CVE-2014-5185