RSS   Vulnerabilities for 'The sorter'   RSS

2021-09-20
 
CVE-2021-24399

CWE-89
 

 
The check_order function of The Sorter WordPress plugin through 1.0 uses an `area_id` parameter which is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection.

 


Copyright 2024, cxsecurity.com

 

Back to Top