Lucene search
China National Vulnerability DatabaseCNVD-2021-70733HistorySep 08, 2021 - 12:00 a.m.
WordPress SQL injection vulnerability
2021-09-0800:00:00
China National Vulnerability Database
www.cnvd.org.cn
8
0.001 Low
EPSS
Percentile
45.2%
WordPress is a set of blogging platforms developed by the WordPress (Wordpress) Foundation using the PHP language. The platform supports the hosting of personal blogging sites on servers with PHP and MySQL.A SQL injection vulnerability exists in Wordpress Plugin Alipay, which stems from the product’s failure to properly check the parameters of the Get request in the GET /wp-admin/options-general.php link. An attacker could execute illegal SQL statements through this vulnerability.
| CPE | Name | Operator | Version |
|---|---|---|---|
| wordpress alipay plugin | le | 3.7.2 |
Related
cvelist
cvelist
CVE-2021-24390 Alipay <= 3.7.2 - Authenticated SQL Injection
2021-09-06 11:09:19
patchstack
patchstack
prion
prion
Sql injection
2021-09-06 11:15:00
wpvulndb
wpvulndb
Alipay <= 3.7.2 - Authenticated SQL Injection
2021-07-23 00:00:00
cve
cve
CVE-2021-24390
2021-09-06 11:15:07
wpexploit
wpexploit
Alipay <= 3.7.2 - Authenticated SQL Injection
2021-07-23 00:00:00
nvd
nvd
CVE-2021-24390
2021-09-06 11:15:07