The Membership & Content Restriction – Paid Member Subscriptions WordPress plugin before 2.4.2 did not sanitise, validate or escape its order and orderby parameters before using them in SQL statement, leading to Authenticated SQL Injections in the Members and Payments pages.
References
Link | Resource |
---|---|
https://plugins.trac.wordpress.org/changeset/2566399/paid-member-subscriptions | Third Party Advisory |
https://wpscan.com/vulnerability/2277d335-1c90-4fa8-b0bf-25873c039c38 | Exploit Third Party Advisory |
https://www.trustwave.com/en-us/resources/security-resources/security-advisories/?fid=29172 | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: WPScan
Published: 2021-09-13T17:56:44
Updated: 2021-09-13T17:56:44
Reserved: 2021-01-14T00:00:00
Link: CVE-2021-24728
JSON object: View
NVD Information
Status : Analyzed
Published: 2021-09-13T18:15:19.283
Modified: 2022-12-20T22:03:01.933
Link: CVE-2021-24728
JSON object: View
Redhat Information
No data.
CWE