Calgary, Alberta, Canada
sales@hackhalt.com
Free Download Free Download Free Download
Explore Pricing Explore Pricing Explore Pricing

Blog

"Prevention is cheaper than a breach"

Live Vulnerability Intelligence

Threat Database

Search CVEs, inspect descriptions, and open detail pages with AI-assisted technical context.

Total3
Critical1
High1
Medium1
Reset
Showing 1-3 of 3 records
Threat Entry Updated 2025-01-07

CVE-2025-22349 - WordPress Auction Plugin

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Owen Cutajar & Hyder Jaffari WordPress Auction Plugin allows SQL Injection.This issue affects WordPress Auction Plugin: from n/a through 3.7.

PLUGIN WordPress Auction Plugin

CVE-2025-22349

HIGH CVSS 7.6 2025-01-07
Open Full Technical Breakdown
Threat Entry Updated 2025-05-14

CVE-2024-8857 - Wordpress Auction Plugin

The WordPress Auction Plugin WordPress plugin through 3.7 does not sanitise and escape some of its settings, which could allow high privilege users such as editors to perform Stored Cross-Site Scripting attacks.

PLUGIN Wordpress Auction

CVE-2024-8857

MEDIUM CVSS 4.8 2025-01-07
Open Full Technical Breakdown
Threat Entry Updated 2025-05-14

CVE-2024-8855 - Wordpress Auction Plugin

The WordPress Auction Plugin WordPress plugin through 3.7 does not sanitize and escape a parameter before using it in a SQL statement, allowing editors and above to perform SQL injection attacks

PLUGIN Wordpress Auction

CVE-2024-8855

CRITICAL CVSS 9.8 2025-01-07
Open Full Technical Breakdown
Scroll to top