Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-24753

Disclosure Date: December 27, 2021 (last updated February 23, 2025)
The Rich Reviews by Starfish WordPress plugin before 1.9.6 does not properly validate the orderby GET parameter of the pending reviews page before using it in a SQL statement, leading to an authenticated SQL injection issue
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0