CVE-2021-24919
Summary: CVE-2021-24919 affects the WordPress Wicked Folders plugin, where the wicked_folders_save_sort_order AJAX action uses the folder_id parameter in an SQL statement without proper sanitization/escaping, enabling SQL injection for authenticated users. Affected versions are before 2.8.10 (per...