Security Advisory

CVE-2021-24949

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-01-10 15:30:31

Last updated 2024-08-03 19:49:13

Assigner WPScan

State PUBLISHED

Description

The "WP Search Filters" widget of The Plus Addons for Elementor - Pro WordPress plugin before 5.0.7 does not sanitise and escape the option parameter before using it in a SQL statement, which could lead to SQL injection

← Browse all CVEs View on cve.org ↗