23 Nov 2021
Vulnérabilité CVE-2021-24877 CVE Vulnerability
The MainWP Child WordPress plugin before 4.1.8 does not validate the orderby and order parameter before using them in a SQL statement, leading to an SQL injection exploitable by high privilege users such as admin when the Backup and Staging by WP Time Capsule plugin is installed (CVSS:0.0) (Last Update:2021-11-23)
Vulnerability Details : The MainWP Child WordPress plugin before 4.1.8 does not validate the orderby and order parameter before using them in a SQL statement, leading to an SQL injection exploitable by high privilege users such as admin when the Backup and Staging by WP Time Capsule plugin is installed Publish Date : 2021-11-23 Last Update Date : 2021-11-23 - CVSS Scores & Vulnerability Types
- Products Affected By CVE-2021-24877
- References For CVE-2021-24877
| ||||||||||||||||||||||||||||||||||||||||||||||
- Metasploit Modules Related To CVE-2021-24877There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information) |