6.1CVSS
6AI Score
0.001EPSS
8.8CVSS
9.1AI Score
0.001EPSS
9.8CVSS
9.5AI Score
0.002EPSS
The WP Editor WordPress plugin before 1.2.7 did not sanitise or validate its setting fields leading to an authenticated (admin+) blind SQL injection issue via an arbitrary parameter when making a request to save the settings.
7.2CVSS
7.3AI Score
0.001EPSS