Lucene search
Jan w OlejuPATCHSTACK:314D2A231BEF31FC9C3AE0B128D50677HistoryJan 14, 2022 - 12:00 a.m.
WordPress Futurio Extra plugin <= 1.6.2 - Authenticated SQL Injection (SQLi) vulnerability
2022-01-1400:00:00
Jan w Oleju
patchstack.com
5
0.001 Low
EPSS
Percentile
24.8%
Authenticated SQL Injection (SQLi) vulnerability discovered by Jan w Oleju in WordPress Futurio Extra plugin (versions <= 1.6.2). Possible chained Cross-Site Scripting (XSS) vulnerability.
Solution
Update the WordPress Futurio Extra plugin to the latest available version (at least 1.6.3).
| CPE | Name | Operator | Version |
|---|---|---|---|
| futurio extra | le | 1.6.2 |
Related
wpvulndb
wpvulndb
Futurio Extra < 1.6.3 - Authenticated SQL Injection
2022-01-04 00:00:00
wpexploit
wpexploit
Futurio Extra < 1.6.3 - Authenticated SQL Injection
2022-01-04 00:00:00
cvelist
cvelist
CVE-2021-25109 Futurio Extra < 1.6.3 - Authenticated SQL Injection
2022-02-14 09:20:52
nvd
nvd
CVE-2021-25109
2022-02-14 12:15:15
cnvd
cnvd
WordPress Futurio Extra plugin SQL injection vulnerability
2022-02-16 00:00:00
cve
cve
CVE-2021-25109
2022-02-14 12:15:15
prion
prion
Cross site scripting
2022-02-14 12:15:00