2022-03-28 17:21:42
WPScan
PUBLISHED
The Wow Countdowns WordPress plugin through 3.1.2 does not sanitize user input into the did parameter and uses it in a SQL statement, leading to an authenticated SQL Injection.