Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-24497

Disclosure Date: August 23, 2021 (last updated February 23, 2025)
The Giveaway WordPress plugin through 1.2.2 is vulnerable to an SQL Injection issue which allows an administrative user to execute arbitrary SQL commands via the $post_id on the options.php page.
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0