cve,link,title,description,vendor,products,score,severity,epss,cisa,cisa_published,article,ransomware,exploited,poc,trended,trended_no_1,published,trended_score
CVE-2024-13095,https://securityvulnerability.io/vulnerability/CVE-2024-13095,SQL Injection Vulnerability in WP Triggers Lite Plugin by WordPress,"The WP Triggers Lite plugin for WordPress, specifically versions up to 2.5.3, has a vulnerability where it fails to properly sanitize and escape input parameters used in SQL queries. This oversight can allow attackers, especially those with administrative privileges, to execute SQL injection attacks, potentially compromising the database and revealing sensitive information. It is crucial for users of this plugin to update to the latest version or implement necessary security measures to mitigate this risk.",WordPress,WP Triggers Lite,4.8,MEDIUM,0.0004299999854993075,false,,false,false,true,true,false,false,2025-01-27T06:00:11.280Z,0
CVE-2024-13094,https://securityvulnerability.io/vulnerability/CVE-2024-13094,Reflected Cross-Site Scripting Vulnerability in WP Triggers Lite by WordPress,"A reflected cross-site scripting vulnerability has been identified in the WP Triggers Lite WordPress plugin, specifically in version 2.5.3. The plugin does not adequately sanitize and escape a certain parameter before rendering it on the page. This oversight opens the door for attackers to inject malicious scripts, particularly targeting high privilege users such as administrators. If exploited, this vulnerability could allow unauthorized access and manipulation of sensitive data within the affected applications.",WordPress,WP Triggers Lite,7.1,HIGH,0.0004299999854993075,false,,false,false,true,true,false,false,2025-01-27T06:00:10.933Z,0