CVE-2021-24141

Advanced Database Cleaner < 3.0.2 - Authenticated SQL injection

EPSS 1.2%CWE-89

Unvaludated input in the Advanced Database Cleaner plugin, versions before 3.0.2, lead to SQL injection allowing high privilege users (admin+) to perform SQL attacks.

Productos afectados

Unknown · Advanced Database Cleaner

¿Quieres saber si tu infraestructura está expuesta a esto?

Hablar con TrueHacking →

Referencias

https://wpscan.com/vulnerability/5c8adca0-fe19-4624-81ef-465b8d007f93