CVSS: 5.8EPSS: 0%CPEs: 1EXPL: 1CVE-2024-10892 – Cost Calculator Builder < 3.2.43 - Settings update via CSRF
https://notcve.org/view.php?id=CVE-2024-10892
27 Nov 2024 — The Cost Calculator Builder WordPress plugin before 3.2.43 does not have CSRF checks in some AJAX actions, which could allow attackers to make logged in users perform unwanted actions via CSRF attacks. The Cost Calculator Builder plugin for WordPress is vulnerable to Cross-Site Request Forgery in all versions up to, and including, 3.2.42. This is due to missing or incorrect nonce validation on the save_settings() function. This makes it possible for unauthenticated attackers to update settings via a forged ... • https://wpscan.com/vulnerability/ff1f5b84-a8cf-4574-a713-53d35739c6cb • CWE-352: Cross-Site Request Forgery (CSRF) •
CVSS: 8.3EPSS: 0%CPEs: 1EXPL: 1CVE-2024-8379 – Cost Calculator Builder < 3.2.29 - Admin+ SQL Injection
https://notcve.org/view.php?id=CVE-2024-8379
09 Sep 2024 — The Cost Calculator Builder WordPress plugin before 3.2.29 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by users with a role as low as Admin. The Cost Calculator Builder plugin for WordPress is vulnerable to SQL Injection via the discount[direction] parameter in all versions up to, and including, 3.2.28 due to insufficient escaping on the user supplied parameter and lack of sufficient preparation on the existing SQL query. This ... • https://wpscan.com/vulnerability/a3463d5a-8215-4958-a6c0-039681c35a50 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •