Vulnerabilities

CVE-2020-25379

by Fred · 14/09/2020

WordPress Plugin Store / Mike Rooijackers Recall Products V0.8 fails to sanitize input from the ‘Manufacturer[]’ parameter which allows an authenticated attacker to inject a malicious SQL query.

Date published : 2020-09-14

https://zeroaptitude.com/misha/wordpress-plugin-bug-hunting-part-2/

Similar

Tags: Cybersecurity Alert