Show filters
1 Total Results
Displaying 1-1 of 1
Sort by:
Attacker Value
Unknown

CVE-2021-24754

Disclosure Date: October 18, 2021 (last updated February 23, 2025)
The MainWP Child Reports WordPress plugin before 2.0.8 does not validate or sanitise the order parameter before using it in a SQL statement in the admin dashboard, leading to an SQL injection issue
Attack Vector: NetworkPrivileges: HighUser Interaction: None
0
0