3 matches found
CVE-2021-24727
The StopBadBots WordPress plugin before 6.60 did not validate or escape the order and orderby GET parameter in some of its admin dashboard pages, leading to Authenticated SQL Injections...
CVE-2021-24727 Block and Stop Bad Bots < 6.60 - Authenticated SQL Injections
The StopBadBots WordPress plugin before 6.60 did not validate or escape the order and orderby GET parameter in some of its admin dashboard pages, leading to Authenticated SQL Injections...
CVE-2021-24727
CVE-2021-24727 concerns the StopBadBots WordPress plugin prior to 6.60. The vulnerability arises from not validating/escaping the order and orderby GET parameter on certain admin dashboard pages, enabling authenticated SQL injections. Impact is authenticated SQLi with partial confidentiality/inte...