Описание
The Team WordPress plugin before 5.0.11 does not properly sanitize and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection.
EPSS
Процентиль: 26%
0.00092
Низкий
8.6 High
CVSS3
Дефекты
Связанные уязвимости
CVSS3: 8.6
github
около 1 месяца назад
The Team WordPress plugin before 5.0.11 does not properly sanitize and escape a parameter before using it in a SQL statement via an AJAX action available to unauthenticated users, leading to a SQL injection.
EPSS
Процентиль: 26%
0.00092
Низкий
8.6 High
CVSS3