3 matches found
CVE-2021-24860
The BSK PDF Manager WordPress plugin before 3.1.2 does not validate and escape the orderby and order parameters before using them in a SQL statement, leading to a SQL injection issue...
CVE-2021-24860
CVE-2021-24860 affects the BSK PDF Manager WordPress plugin prior to 3.1.2. The issue is a SQL injection in which the plugin fails to validate and escape the orderby and order parameters before using them in a SQL statement. Impact is partial to high due to potential unauthorized data access or m...
CVE-2021-24860 BSK PDF Manager < 3.1.2 - Admin+ SQL Injection
The BSK PDF Manager WordPress plugin before 3.1.2 does not validate and escape the orderby and order parameters before using them in a SQL statement, leading to a SQL injection issue...