1 results (0.001 seconds)
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1
CVSS: 7.2EPSS: 0%CPEs: 1EXPL: 1CVE-2021-24131 – Anti-Spam by CleanTalk < 5.149 - Multiple Authenticated SQL Injections
https://notcve.org/view.php?id=CVE-2021-24131
Unvalidated input in the Anti-Spam by CleanTalk WordPress plugin, versions before 5.149, lead to multiple authenticated SQL injection vulnerabilities, however, it requires high privilege user (admin+). Una entrada no comprobada en Anti-Spam del plugin de WordPress CleanTalk, versiones anteriores a 5.149, conlleva a múltiples vulnerabilidades de inyección SQL autenticadas, sin embargo, requiere un usuario muy privilegiado (admin+) • https://wpscan.com/vulnerability/1bc28021-28c0-43fa-b89e-6b93c345e5d8 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •