CVE-2021-24848
Mediamatic < 2.8.1 - Subscriber+ SQL Injection
The mediamaticAjaxRenameCategory AJAX action of the Mediamatic WordPress plugin before 2.8.1, available to any authenticated user, does not sanitise the categoryID parameter before using it in a SQL statement, leading to an SQL injection
Productos afectados
Unknown · Mediamatic – Media Library Folders¿Quieres saber si tu infraestructura está expuesta a esto?
Hablar con TrueHacking →