CVE-2019-12570
The CVE-2019-12570 entry concerns the WordPress plugin “Server Status by Hostname/IP” by Xpert Solution, version 4.6. A SQL injection vulnerability exists that allows an authenticated user to execute arbitrary SQL commands via GET parameters due to insufficient input validation in database querie...