1 results (0.002 seconds)
CVSS: -EPSS: 0%CPEs: 1EXPL: 1
CVSS: -EPSS: 0%CPEs: 1EXPL: 1CVE-2024-9186 – Automation By Autonami < 3.3.0 - Unauthenticated SQLi
https://notcve.org/view.php?id=CVE-2024-9186
The Recover WooCommerce Cart Abandonment, Newsletter, Email Marketing, Marketing Automation By FunnelKit WordPress plugin before 3.3.0 does not sanitize and escape the bwfan-track-id parameter before using it in a SQL statement, allowing unauthenticated users to perform SQL injection attacks • https://wpscan.com/vulnerability/fab29b59-7e87-4289-88dd-ed5520260c26 •