CVE-2021-24400

The Edit Role functionality in the Display Users WordPress plugin through 2.0.0 had an id parameter which is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection...

CVE-2021-24400

The Edit Role functionality in the Display Users WordPress plugin through 2.0.0 had an id parameter which is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection...

CVE-2021-24400 Display users <= 2.0.0 - Authenticated SQL Injection

The Edit Role functionality in the Display Users WordPress plugin through 2.0.0 had an id parameter which is not sanitised, escaped or validated before inserting to a SQL statement, leading to SQL injection...

CVE-2021-24400

The CVE-2021-24400 entry refers to a SQL injection in the Display Users WordPress plugin (≤ 2.0.0) due to an unsanitised id parameter in the Edit Role function, which is inserted into SQL statements. Affected component: WordPress Display Users plugin, version up to 2.0.0; root cause: lack of sani...

WordPress Display Users plugin <= 2.0.0 - Authenticated SQL Injection (SQLi) vulnerability

Authenticated SQL Injection SQLi vulnerability discovered by Syed Sheeraz Ali in WordPress Display Users plugin versions = 2.0.0. Solution This plugin has been closed as of May 13, 2021 and is not available for download. Reason: Security Issue...