exploitDog

GHSA-68gc-6j2c-jr3m

Опубликовано: 24 мая 2022

Источник: github

Github: Не прошло ревью

CVSS3: 8.8

Описание

The StopBadBots WordPress plugin before 6.60 did not validate or escape the order and orderby GET parameter in some of its admin dashboard pages, leading to Authenticated SQL Injections

The StopBadBots WordPress plugin before 6.60 did not validate or escape the order and orderby GET parameter in some of its admin dashboard pages, leading to Authenticated SQL Injections

Ссылки

EPSS

Процентиль: 78%

0.0115

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-89

Связанные уязвимости

CVE-2021-24727

CVSS3: 8.8

nvd

больше 4 лет назад

The StopBadBots WordPress plugin before 6.60 did not validate or escape the order and orderby GET parameter in some of its admin dashboard pages, leading to Authenticated SQL Injections

EPSS

Процентиль: 78%

0.0115

Низкий

8.8 High

CVSS3

CVE ID

Дефекты

CWE-89