CVE-2021-24141

Advanced Database Cleaner < 3.0.2 - Authenticated SQL injection

EPSS 1.2%CWE-89

Unvaludated input in the Advanced Database Cleaner plugin, versions before 3.0.2, lead to SQL injection allowing high privilege users (admin+) to perform SQL attacks.

Produtos afetados

Unknown · Advanced Database Cleaner

Quer saber se a sua infraestrutura está exposta a isto?

Falar com a TrueHacking →

Referências

https://wpscan.com/vulnerability/5c8adca0-fe19-4624-81ef-465b8d007f93