logo
DATABASE RESOURCES PRICING ABOUT US

Stock in & out <= 1.0.4 - Authenticated SQL Injection

Description

The plugin lacks proper sanitization before passing variables to an SQL request, making it vulnerable to SQL Injection attacks. Users with a role of contributor or higher can exploit this vulnerability.


Related