CVE-2021-26609

A vulnerability was found in Mangboard(WordPress plugin). A SQL-Injection vulnerability was found in order_type parameter. The order_type parameter makes a SQL query using unfiltered data. This vulnerability allows a remote attacker to steal user information.

Date published : 2021-10-26

https://www.boho.or.kr/krcert/secNoticeView.do?bulletin_writing_sequence=36292