Security Advisory

CVE-2021-24769

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-10-25 13:20:53

Last updated 2024-08-03 19:42:17

Assigner WPScan

State PUBLISHED

Description

The Permalink Manager Lite WordPress plugin before 2.2.13.1 does not validate and escape the orderby parameter before using it in a SQL statement in the Permalink Manager page, leading to a SQL Injection

← Browse all CVEs View on cve.org ↗