CVE-2021-24141

Advanced Database Cleaner < 3.0.2 - Authenticated SQL injection

EPSS 1.2%CWE-89

Unvaludated input in the Advanced Database Cleaner plugin, versions before 3.0.2, lead to SQL injection allowing high privilege users (admin+) to perform SQL attacks.

Affected products

Unknown · Advanced Database Cleaner

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://wpscan.com/vulnerability/5c8adca0-fe19-4624-81ef-465b8d007f93