Lucene search

K
cnvdChina National Vulnerability DatabaseCNVD-2022-69138
HistoryJun 15, 2021 - 12:00 a.m.

WordPress Xllentech English Islamic Calendar plugin SQL injection vulnerability

2021-06-1500:00:00
China National Vulnerability Database
www.cnvd.org.cn
5

0.001 Low

EPSS

Percentile

40.5%

WordPress is a set of blogging platforms developed by the WordPress (Wordpress) Foundation using the PHP language. The platform supports setting up personal blog sites on servers with PHP and MySQL. SQL injection vulnerability exists in versions of WordPress prior to Xllentech English Islamic Calendar plugin 2.6.8, which stems from a failure to clean, escape or validate Post parameters during a delete date operation. An attacker could use this vulnerability to execute SQL commands.

0.001 Low

EPSS

Percentile

40.5%