cleantalk
Vulnerabilities and Security Researches

DirectoryPress – Business Directory And Classified Ad Listing, CVE-2024-38755

CVE, Research URL

CVE-2024-38755

Home page URL

Security reports for DirectoryPress – Business Directory And Classified Ad Listing

Application

DirectoryPress – Business Directory And Classified Ad Listing

Published on
Jul 22, 2024
Research Description
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Designinvento DirectoryPress allows SQL Injection.This issue affects DirectoryPress: from n/a through 3.6.10.
Affected versions
Min -, max 3.6.10.
Status
vulnerable
Previous vulnerability researches
DirectoryPress Frontend (CVE-2024-10581) , Feb 16, 2025
DirectoryPress – Business Directory And Classified Ad Listing (CVE-2024-49633) , Jan 09, 2025
DirectoryPress – Business Directory And Classified Ad Listing (CVE-2023-37967) , Jun 10, 2024
DirectoryPress – Business Directory And Classified Ad Listing (CVE-2024-10584) , Dec 25, 2024
DirectoryPress – Business Directory And Classified Ad Listing (CVE-2024-38755) , Jul 15, 2024
New vulnerability
Integration for WooCommerce and QuickBooks (CVE-2025-39600) , Apr 18, 2025
GB Gallery Slideshow (CVE-2025-32649) , Apr 18, 2025
Question Answer (CVE-2025-32646) , Apr 18, 2025
PropertyHive (CVE-2025-39577) , Apr 18, 2025
WP-BusinessDirectory – Business directory plugin for WordPress (CVE-2025-32630) , Apr 18, 2025