Lucene search

K
prionPRIOn knowledge basePRION:CVE-2021-24460
HistoryAug 02, 2021 - 11:15 a.m.

Sql injection

2021-08-0211:15:00
PRIOn knowledge base
www.prio-n.com
2

9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.8%

The get_fb_likeboxes() function in the Popup Like box – Page Plugin WordPress plugin before 3.5.3 did not use whitelist or validate the orderby parameter before using it in SQL statements passed to the get_results() DB calls, leading to SQL injection issues in the admin dashboard

CPENameOperatorVersion
popup_boxlt3.5.3

9 High

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

37.8%

Related for PRION:CVE-2021-24460