2 matches found
CVE-2021-24199 wpDataTables < 3.4.2 - Blind SQL Injection via start Parameter
The wpDataTables – Tables & Table Charts premium WordPress plugin before 3.4.2 allows a low privilege authenticated user to perform Boolean-based blind SQL Injection in the table list page on the endpoint /wp-admin/admin-ajax.php?action=getwdtable&tableid=1, on the 'start' HTTP POST parameter. Th...
CVE-2021-24199
CVE-2021-24199 affects the wpDataTables – Tables & Table Charts premium WordPress plugin (versions before 3.4.2). The vulnerability is a Boolean-based blind SQL Injection in the table list page, exploitable via the POST parameter start on the endpoint /wp-admin/admin-ajax.php?action=get_wdtable&t...