The Quiz Maker WordPress plugin before 6.2.0.9 did not properly sanitise and escape the order and orderby parameters before using them in SQL statements, leading to SQL injection issues in the admin dashboard
References
Link | Resource |
---|---|
https://wpscan.com/vulnerability/929ad37d-9cdb-4117-8cd3-cf7130a7c9d4 | Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: WPScan
Published: 2021-08-02T10:32:02
Updated: 2021-08-02T10:32:02
Reserved: 2021-01-14T00:00:00
Link: CVE-2021-24456
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-08-02T11:15:09.363
Modified: 2021-08-09T19:07:47.400
Link: CVE-2021-24456
JSON object: View
Redhat Information
No data.
CWE