CVE-2024-51626

CVSS 3.1 Score 8.8 of 10 (high)

Details

Published Nov 4, 2024

Updated: Nov 6, 2024

CWE ID 89

Summary

CVE-2024-51626 is a newly disclosed SQL Injection vulnerability affecting Mansur Ahamed Woocommerce Quote Calculator. This issue permits attackers to inject malicious SQL commands, bypassing input validations. The vulnerability enables blind SQL injection, allowing attackers to extract sensitive data without any visible interaction or response from the application. The affected version range for Woocommerce Quote Calculator is from n/a to 1.1. It's essential for users to upgrade or patch their installations to mitigate the risk of exploitation.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

https://app.recordedfuture.com/live/sc/entity/0BLDDQ
https://www.cve.org/CVERecord?id=CVE-2024-51626
https://nvd.nist.gov/vuln/detail/CVE-2024-51626

Back to Vulnerability Database

CVE-2024-51626

CVSS 3.1 Score 8.8 of 10 (high)

Details

Summary

Advisories, Assessments, and Mitigations