Security Advisory

CVE-2021-24520

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-08-09 10:04:14

Last updated 2024-08-03 19:35:19

Assigner WPScan

State PUBLISHED

Description

The Stock in & out WordPress plugin through 1.0.4 lacks proper sanitization before passing variables to an SQL request, making it vulnerable to SQL Injection attacks. Users with a role of contributor or higher can exploit this vulnerability.

← Browse all CVEs View on cve.org ↗