Security Advisory

CVE-2021-25109

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-02-14 09:20:52

Last updated 2024-08-03 19:56:10

Assigner WPScan

State PUBLISHED

Description

The Futurio Extra WordPress plugin before 1.6.3 is affected by a SQL Injection vulnerability that could be used by high privilege users to extract data from the database as well as used to perform Cross-Site Scripting (XSS) against logged in admins by making send open a malicious link.

← Browse all CVEs View on cve.org ↗