Skip to main content

Action Network

1 CVEs product

Monthly

CVE-2024-2954 MEDIUM This Month

The Action Network plugin for WordPress is vulnerable to SQL Injection via the 'bulk-action' parameter in version 1.4.3 due to insufficient escaping on the user supplied parameter and lack of. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi WordPress Action Network
NVD
CVSS 3.1
4.9
EPSS
0.6%
EPSS 1% CVSS 4.9
MEDIUM This Month

The Action Network plugin for WordPress is vulnerable to SQL Injection via the 'bulk-action' parameter in version 1.4.3 due to insufficient escaping on the user supplied parameter and lack of. Rated medium severity (CVSS 4.9), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi WordPress Action Network
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy