CVE-2021-24397
The CVE-2021-24397 entry concerns the WordPress MicroCopy plugin (versions ≤ 1.1.0). The vulnerability is an authenticated SQL injection caused by an unsanitized id parameter in a GET request used to fetch related options, allowing injection into a SQL statement. Documented PoCs show the vulnerab...