2 matches found
CVE-2024-33680
CVE-2024-33680 is a CSRF vulnerability affecting the WordPress plugin MainWP Child Reports up to version 2.1.1. The connected Red Hat advisory confirms the issue as a CSRF vulnerability in MainWP Child Reports; no public details on root cause specifics beyond CSRF, affected versions, or any avail...
CVE-2021-24754
CVE-2021-24754 affects the WordPress MainWP Child Reports plugin prior to version 2.0.8. The vulnerability arises from lack of validation/sanitization of the order parameter in the admin dashboard SQL statement, enabling SQL injection. Public sources (Red Hat, CVE listings, and vulnerability trac...