RSS   Vulnerabilities for 'Kivicare'   RSS

2022-06-13
 
CVE-2022-0786

CWE-89
 

 
The KiviCare WordPress plugin before 2.3.9 does not sanitise and escape some parameters before using them in SQL statements via the ajax_post AJAX action with the get_doctor_details route, leading to SQL Injections exploitable by unauthenticated users

 


Copyright 2024, cxsecurity.com

 

Back to Top