7.8 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
33.1%
Description The plugin does not properly sanitise and escape the order_by parameter before using it in a SQL statement, leading to a SQL injection exploitable by podcast manager roles and above