RSS   Vulnerabilities for 'Bestbooks'   RSS

2022-06-13
 
CVE-2022-0827

CWE-89
 

 
The Bestbooks WordPress plugin through 2.6.3 does not sanitise and escape some parameters before using them in a SQL statement via an AJAX action, leading to an SQL Injection exploitable by unauthenticated users

 


Copyright 2024, cxsecurity.com

 

Back to Top