The Asgaros Forum WordPress plugin before 1.15.13 does not validate and escape user input when subscribing to a topic before using it in a SQL statement, leading to an unauthenticated SQL injection issue
CPE | Name | Operator | Version |
---|---|---|---|
asgaros_forum | lt | 1.15.13 |