Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistWPScanCVELIST:CVE-2021-24137
HistoryMar 18, 2021 - 2:57 p.m.

CVE-2021-24137 Blog2Social: Social Media Auto Post & Scheduler < 6.3.1 - Authenticated SQL Injection

2021-03-1814:57:49
CWE-89
WPScan
www.cve.org
5
blog2social
wordpress
sql injection

AI Score

9.1

Confidence

High

EPSS

0.001

Percentile

39.6%

JSON

Unvalidated input in the Blog2Social WordPress plugin, versions before 6.3.1, lead to SQL Injection in the Re-Share Posts feature, allowing authenticated users to inject arbitrary SQL commands.

CNA Affected

[
  {
    "product": "Blog2Social: Social Media Auto Post & Scheduler",
    "vendor": "Unknown",
    "versions": [
      {
        "lessThan": "6.3.1",
        "status": "affected",
        "version": "6.3.1",
        "versionType": "custom"
      }
    ]
  }
]

Related

nvd 1
wpvulndb 1
wpexploit 1
prion 1
openvas 1
cve 1
nvd
nvd
CVE-2021-24137
2021-03-18 15:15:14
wpvulndb
wpvulndb
Blog2Social: Social Media Auto Post & Scheduler < 6.3.1 - Authenticated SQL Injection
2020-05-29 00:00:00
wpexploit
wpexploit
Blog2Social: Social Media Auto Post & Scheduler < 6.3.1 - Authenticated SQL Injection
2020-05-29 00:00:00
prion
prion
Sql injection
2021-03-18 15:15:00
openvas
openvas
WordPress Blog2Social Plugin < 6.3.1 SQLi Vulnerability
2023-01-11 00:00:00
cve
cve
CVE-2021-24137
2021-03-18 15:15:14

AI Score

9.1

Confidence

High

EPSS

0.001

Percentile

39.6%

JSON
Related for CVELIST:CVE-2021-24137
nvd1wpvulndb1wpexploit1prion1openvas1cve1