Vulnerabilities

CVE-2021-24848

by Fred · 13/12/2021

The mediamaticAjaxRenameCategory AJAX action of the Mediamatic WordPress plugin through 2.7, available to any authenticated user, does not sanitise the categoryID parameter before using it in a SQL statement, leading to an SQL injection

Date published : 2021-12-13

https://wpscan.com/vulnerability/156d4faf-7d34-4d9f-a654-9064d4eb3aea

Similar

Tags: Cybersecurity Alert