2022-01-10 15:30:37
WPScan
PUBLISHED
The WPcalc WordPress plugin through 2.1 does not sanitize user input into the did parameter and uses it in a SQL statement, leading to an authenticated SQL Injection vulnerability.