Lucene search

K
prionPRIOn knowledge basePRION:CVE-2021-24889
HistoryNov 29, 2021 - 9:15 a.m.

Sql injection

2021-11-2909:15:00
PRIOn knowledge base
www.prio-n.com
8

0.001 Low

EPSS

Percentile

37.8%

The Ninja Forms Contact Form WordPress plugin before 3.6.4 does not escape keys of the fields POST parameter, which could allow high privilege users to perform SQL injections attacks

CPENameOperatorVersion
ninja_formslt3.6.4

0.001 Low

EPSS

Percentile

37.8%