CVE-2024-38788
WordPress UiPress lite plugin <= 3.4.06 - SQL Injection vulnerabilityImproper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Bởi Admin 2020 UiPress lite allows SQL Injection.This issue affects UiPress lite: from n/a through 3.4.06.
We have discovered 1 live websites that are affected by CVE-2024-38788.
Affected Software
| Product |  Uipress Lite |
| Category | Wordpress Plugins |
| Vulnerable Domains | 1 live websites (13% of Uipress Lite install base) |
| Vulnerable Versions |
|
| Vulnerable Versions Count | 0 versions ( less than 0.1% of all versions) |
Common Weakness Enumeration
CWE-89 Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')Details
- Published - Jul 22, 2024
- Updated - Aug 2, 2024
Credits
- Nguyễn Trung Kiên - anhchangmutrang (Patchstack Alliance) (finder)
CVE References
CWE References
CWE
Website Distribution by Country
Number of websites using CVE-2024-38788 GB | 1 websites |
Website Distribution by TLD
Number of websites using CVE-2024-38788| .com | 1 websites |
Vulnerable Versions
Vulnerable versions are highlighted in redWebsites affected by CVE-2024-38788
Top websites that are affected by CVE-2024-38788. Please click on the "Contact us" link to get more information.| Domain | Country | Rank | Contacts |
|---|---|---|---|
| **.********.com | GB | **,***,*** |
FAQ
CVE-2024-38788 is Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') in Uipress Lite
A total of 1 websites have been identified as vulnerable to CVE-2024-38788, based on global website indexing conducted by WebTechSurvey.
The Uipress Lite is affected by the CVE-2024-38788 vulnerability.
Uipress Lite versions up to and including 3.4.6 are vulnerable to CVE-2024-38788.