2023-06-19 10:52:44
WPScan
PUBLISHED
The QueryWall: Plugn Play Firewall WordPress plugin through 1.1.1 does not properly sanitise and escape a parameter before using it in a SQL statement, leading to a SQL injection exploitable by high privilege users such as admin.