Security Advisory

CVE-2021-24827

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-11-08 17:35:27
Last updated 2024-08-03 19:42:17
Assigner WPScan
State PUBLISHED

Description

The Asgaros Forum WordPress plugin before 1.15.13 does not validate and escape user input when subscribing to a topic before using it in a SQL statement, leading to an unauthenticated SQL injection issue