RSS   Vulnerabilities for 'Accesspress social icons'   RSS

2021-03-18
 
CVE-2021-24143

CWE-89
 

 
Unvalidated input in the AccessPress Social Icons plugin, versions before 1.8.1, did not sanitise its widget attribute, allowing accounts with post permission, such as author, to perform SQL injections.

 

 >>> Vendor: Accesspressthemes 5 Products
Ultimate-form-builder-lite
Anonymous post pro
Wp floating menu
Accesspress social icons
Access demo importer


Copyright 2021, cxsecurity.com

 

Back to Top